Описание
wap/index.php in Crossday Discuz! Board 6.x and 7.x allows remote authenticated users to execute arbitrary PHP code via the creditsformula parameter.
wap/index.php in Crossday Discuz! Board 6.x and 7.x allows remote authenticated users to execute arbitrary PHP code via the creditsformula parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-6958
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46644
- https://www.exploit-db.com/exploits/7119
- http://osvdb.org/50202
- http://secunia.com/advisories/32731
- http://www.80vul.com/dzvul/sodb/13/dz-exp-sodb-2008-13_php.htm
- http://www.discuz.net/archiver/?tid-1112426.html
- http://www.securityfocus.com/bid/32303
Связанные уязвимости
nvd
больше 16 лет назад
wap/index.php in Crossday Discuz! Board 6.x and 7.x allows remote authenticated users to execute arbitrary PHP code via the creditsformula parameter.