Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Insecure Permissions vulnerability in BossCMS v.1.3.0 allows a local attacker to execute arbitrary code and escalate privileges via the init function in admin.class.php component.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BossCMS 安全漏洞
Vulnerability Description
Wenzhou Huoyin Information Technology BossCMS是中国温州互引信息技术(Wenzhou Huoyin Information Technology)公司的一款基于自主研发 PHP 框架 MySQL 架构的内容管理系统。 BossCMS v.1.3.0版本存在安全漏洞,该漏洞源于权限管理不当。攻击者利用该漏洞通过 admin.class.php 组件中的 init 函数执行任意代码并造成权限提升。
CVSS Information
N/A
Vulnerability Type
N/A