博文

目前显示的是 四月, 2017的博文

Any file delete vulnerability about fiyocms 2.0.7

Description:
Any file delete vulnerability about fiyocms 2.0.7

Reference:
https://github.com/FiyoCMS/FiyoCMS/issues/2

Credit:
This bugs was discovered by ADLab of VenusTech.


modified eCommerce Shopsoftware 2.0.2.2 XML External Entity (XXE) vulnerability

Description:
modified eCommerce 2.0.2.2 rev 10690  has a XML External Entity (XXE) vulnerability.

Details:
More details will be release after it is fixed( 90 days after being fixed).

Patch:
https://www.modified-shop.org/forum/index.php?topic=37185.0

Credit:
This bugs was discovered by ADLab of VenusTech.