Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Tiny MoxieManager PHP before 4.0.0, remote code execution can occur in the installer command. This vulnerability allows unauthenticated attackers to inject and execute arbitrary code. Attacker-controlled data to InstallCommand can be inserted into config.php, and InstallCommand is available after an installation has completed.
CVSS Information
N/A
Vulnerability Type
静态存储代码中指令转义处理不恰当(静态代码注入)
Vulnerability Title
Tiny MoxieManager 安全漏洞
Vulnerability Description
Tiny MoxieManager是Tiny公司的一个应用程序。用于管理 PHP 和 .NET 中的所有媒体文件。 Tiny MoxieManager 4.0.0之前版本存在安全漏洞,该漏洞源于安装命令中可能发生远程代码执行,未经验证的攻击者可注入并执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A