Home > Article > CMS Tutorial > The most comprehensive summary of PHPCMS vulnerabilities
PHPCMS vulnerability summary is as follows:
1. Vulnerability name: Logic problem somewhere in phpcms Causes getshell
Patch file path: www/phpcms/libs/classes/attachment.class.php
Patch plan: https://www.php.cn/ cms/phpcms/436117.html
2. Vulnerability name: phpcms authkey generation algorithm problem leads to authkey leakage
Patch file path: www/caches/configs /system.php
Patch plan: https://www.php.cn/cms/phpcms/436123.html
3. Vulnerability name: phpcms front-end injection leads to arbitrary file reading vulnerability
Patch file path: www/phpcms/modules/content/down.php
Patch plan: https://www .php.cn/cms/phpcms/436128.html
4. Vulnerability name: phpcms SQL injection vulnerability file param.class.php
Patch File path: www/phpcms/libs/classes/param.class.php
Patch plan: https://www.php.cn/cms/phpcms/436133.html (No. Five)
5. Vulnerability name: phpcms v9 wide byte injection vulnerability
Patch file path: www/phpcms/modules/pay/respond.php
Patch plan: https://www.php.cn/cms/phpcms/436136.html
6. Vulnerability name: phpcms injection vulnerability file* poster.php *
Patch file path: www/phpcms/modules/poster/poster.php
Patch plan: https://www.php.cn/ cms/phpcms/436141.html
7. Vulnerability name: phpcms injection vulnerability file * phpsso.php *
Patch file path: www/api / phpsso.php
Patch plan: https://www.php.cn/cms/phpcms/436133.html (Article 7)
8. Vulnerability name: phpcms injection vulnerability file * index.php *
Patch file path: www/phpcms/modules/member/index.php
Patch plan: https://www.php.cn/cms/phpcms/436133.html (Article 4)
9. Vulnerability name: Other vulnerability tips
Patch file path: Please refer to the link on the right or other networks
Patch plan: https://www.php.cn/cms/phpcms/436133.html
PHP Chinese website, a large number of free PHPCMS tutorials, welcome to learn online!
This article is reproduced from: https://blog.csdn.net/qq_35393869/article/details/80653534
The above is the detailed content of The most comprehensive summary of PHPCMS vulnerabilities. For more information, please follow other related articles on the PHP Chinese website!