漏洞描述
【漏洞对象】ThinkSNS 【漏洞描述】ThinkSNS开源社交系统开发配置不当导致的信息泄露,Debug参数泄露php版本、运行细节、sql语句、根目录文件等调试信息,为进一步攻击提供帮助。
ThinkSNS v4 Debug参数-信息泄露
PoC代码
暂无相关漏洞推荐
- POC CVE-2017-12794: Django Debug Page - Cross-Site Scripting
- POC CVE-2019-11248: Debug Endpoint pprof - Exposure Detection
- POC CVE-2021-3129: Laravel with Ignition <= v8.4.2 Debug Mode - Remote Code Execution
- POC azure-appservice-remote-debugging-enabled: Azure App Service Remote Debugging Enabled
- POC android-debug-enabled: Android Debug Enabled
- POC yii-debugger: View Yii Debugger Information
- POC django-debug-exposure: Django Debug Exposure
- POC event-debug-server-status: Event Debug Server Status
- POC firebase-debug-log: Firebase Debug Log File Exposure
- POC go-pprof-debug: Go pprof Debug Page
- POC jboss-seam-debug-page: Jboss Seam Debug Page Enabled
- POC npm-debug-log: NPM Debug Log Disclosure
- POC pyramid-debug-toolbar: Pyramid Debug Toolbar