Home  >  Article  >  CMS Tutorial  >  The most comprehensive summary of PHPCMS vulnerabilities

The most comprehensive summary of PHPCMS vulnerabilities

爱喝马黛茶的安东尼
爱喝马黛茶的安东尼forward
2019-11-20 17:31:1011387browse

The most comprehensive summary of PHPCMS vulnerabilities

PHPCMS vulnerability summary is as follows:

1. Vulnerability name: Logic problem somewhere in phpcms Causes getshell

Patch file path: www/phpcms/libs/classes/attachment.class.php

Patch plan: https://www.php.cn/ cms/phpcms/436117.html

2. Vulnerability name: phpcms authkey generation algorithm problem leads to authkey leakage

Patch file path: www/caches/configs /system.php

Patch plan: https://www.php.cn/cms/phpcms/436123.html

3. Vulnerability name: phpcms front-end injection leads to arbitrary file reading vulnerability

Patch file path: www/phpcms/modules/content/down.php

Patch plan: https://www .php.cn/cms/phpcms/436128.html

4. Vulnerability name: phpcms SQL injection vulnerability file param.class.php

Patch File path: www/phpcms/libs/classes/param.class.php

Patch plan: https://www.php.cn/cms/phpcms/436133.html (No. Five)

5. Vulnerability name: phpcms v9 wide byte injection vulnerability

Patch file path: www/phpcms/modules/pay/respond.php

Patch plan: https://www.php.cn/cms/phpcms/436136.html

6. Vulnerability name: phpcms injection vulnerability file* poster.php *

Patch file path: www/phpcms/modules/poster/poster.php

Patch plan: https://www.php.cn/ cms/phpcms/436141.html

7. Vulnerability name: phpcms injection vulnerability file * phpsso.php *

Patch file path: www/api / phpsso.php

Patch plan: https://www.php.cn/cms/phpcms/436133.html (Article 7)

8. Vulnerability name: phpcms injection vulnerability file * index.php *

Patch file path: www/phpcms/modules/member/index.php

Patch plan: https://www.php.cn/cms/phpcms/436133.html (Article 4)

9. Vulnerability name: Other vulnerability tips

Patch file path: Please refer to the link on the right or other networks

Patch plan: https://www.php.cn/cms/phpcms/436133.html

PHP Chinese website, a large number of free PHPCMS tutorials, welcome to learn online!

This article is reproduced from: https://blog.csdn.net/qq_35393869/article/details/80653534

The above is the detailed content of The most comprehensive summary of PHPCMS vulnerabilities. For more information, please follow other related articles on the PHP Chinese website!

Statement:
This article is reproduced at:csdn.net. If there is any infringement, please contact admin@php.cn delete