VULHUB ™

Harris Yusuf Arifin Harris Wap Chat 1.0的多个PHP远程文件包含漏洞, 在register_globals被激活的时候, 远程攻击者可以通过对(1) eng.writeMsg.php, (2) eng.adCreate.php, (3) eng.adCreateSave.php, (4) eng.adDispByTypeOptions.php, (5) eng.createRoom.php, (6) eng.forward.php, (7) eng.pageLogout.php, (8) eng.resultMember.php, (9) eng.roomDeleteConfirm.php, (10) eng.saveNewRoom.php, 以及(11) eng.searchMember.php in src/的sysFileDir地一个URL来执行任意PHP代码。

Harris Yusuf Arifin Harris Wap Chat 1.0的多个PHP远程文件包含漏洞, 在register_globals被激活的时候, 远程攻击者可以通过对(1) eng.writeMsg.php, (2) eng.adCreate.php, (3) eng.adCreateSave.php, (4) eng.adDispByTypeOptions.php, (5) eng.createRoom.php, (6) eng.forward.php, (7) eng.pageLogout.php, (8) eng.resultMember.php, (9) eng.roomDeleteConfirm.php, (10) eng.saveNewRoom.php, 以及(11) eng.searchMember.php in src/的sysFileDir地一个URL来执行任意PHP代码。