漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
CTCMS Content Management System Frontend/Template Management CT_Parser.php special elements used in a template engine
Vulnerability Description
A weakness has been identified in CTCMS Content Management System up to 2.1.2. This affects an unknown function in the library /ctcms/apps/libraries/CT_Parser.php of the component Frontend/Template Management Module. This manipulation causes improper neutralization of special elements used in a template engine. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
CWE-1336
Vulnerability Title
CTCMS 安全漏洞
Vulnerability Description
CTCMS(赤兔CMS)是中国赤兔CMS(CTCMS)公司的一个视频内容管理系统。 CTCMS 2.1.2及之前版本存在安全漏洞,该漏洞源于文件/ctcms/apps/libraries/CT_Parser.php中未知函数对模板引擎特殊元素中和不当,可能导致远程攻击。
CVSS Information
N/A
Vulnerability Type
N/A