漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
loganhong php loganSite Article article_detail.php sql injection
Vulnerability Description
A security flaw has been discovered in loganhong php loganSite up to c035fb5c3edd0b2a5e32fd4051cbbc9e61a31426. This affects an unknown function of the file /includes/article_detail.php of the component Article Handler. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
loganSite SQL注入漏洞
Vulnerability Description
loganSite是loganhong个人开发者的一个个人博客项目。 loganSite存在SQL注入漏洞,该漏洞源于组件Article Handler中文件/includes/article_detail.php中参数ID的错误操作,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A