漏洞描述
SL-Studio 是一套web网站 易受本地文件包含(LFI)漏洞的攻击,该漏洞允许远程未经身份验证的攻击者查看重要的、已确认的信息。
SL-Studio 任意文件读取
PoC代码
暂无相关漏洞推荐
- Sim Studio AI 服务端请求伪造漏洞(CVE-2025-9805)
- IBM Watson Studio on Cloud Pak for Data 跨站脚本漏洞
- Cherry Studio 命令注入漏洞
- POC CVE-2019-8982: Wavemaker Studio 6.6 - Local File Inclusion/Server-Side Request Forgery
- POC CVE-2021-43421: Studio-42 elFinder <2.1.60 - Arbitrary File Upload
- POC CVE-2022-38131: RStudio Connect - Open Redirect
- POC CVE-2023-47115: Label Studio - Cross-Site Scripting
- POC CVE-2023-47117: Label Studio - Sensitive Information Exposure
- POC CVE-2025-34300: SawtoothSoftware Lighthouse Studio < 9.16.14 - Pre-Auth Remote Code Execution
- POC shikongzhiyou-erp-uploadstudiofile-fileupload: 时空智友ERP系统 uploadStudioFile 任意文件上传漏洞
- POC exposed-vscode: Visual Studio Code Directories - Detect
- POC vscode-launch: Visual Studio Code launch.json Exposure
- POC label-studio-signup: Label Studio - Sign-up Detect