漏洞描述
Olaf Noehring的Search Engine Project (TSEP) 0.942版本搜索软件存在PHP远程文件包含漏洞,远程攻击者可借助提交到pagenavigation.php脚本的tsep_config[absPath]参数中的URL执行任意PHP代码。
Olaf Noehring的Search Engine Project 'pagenavigation.php' PHP远程文件包含漏洞
PoC代码
暂无相关漏洞推荐
- Code-Projects Refugee Food Management System SQL注入漏洞
- Code-Projects College Notes Uploading System SQL注入漏洞
- Code-Projects Assessment Management SQL注入漏洞
- 金和OA ProjectImport.aspx XXE漏洞
- 金和OA ProjectPlanReportDetail.aspx 存在SQL注入漏洞
- WordPress AI Engine /wp-json/mcp/v1 信息泄露漏洞(CVE-2025-11749)
- (CVE-2023-53878)Member Login Script 3.3客户端去同步漏洞
- 金和OA C6系统 ProjectInfos.aspx SQL注入漏洞
- 建文工程管理系统 ProjectMap SQL注入漏洞
- POC CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass
- POC CVE-2023-23897: Ozette Plugins - Cross-Site Request Forgery
- POC wp-woocommerce-admin-fpd: WordPress Plugin WooCommerce Admin (woocommerce-admin) Full Path Disclosure
- 殡仪馆管理系统 AshesSearch.jsp 信息泄露