漏洞描述
【漏洞对象】ThinkSNS 【漏洞描述】ThinkSNS开源社交系统开发配置不当导致的信息泄露,Debug参数泄露php版本、运行细节、sql语句、根目录文件等调试信息,为进一步攻击提供帮助。
ThinkSNS v4 Debug参数-信息泄露
PoC代码
暂无相关漏洞推荐
- POC magento-debug-log-exposure: Magento Debug Log - Exposure
- POC imageresizer-debug-exposure: ImageResizer Debug - Information Exposure
- POC wp-members-log-disclosure: WordPress Members Plugin - Debug/Error Log Disclosure
- POC CVE-2017-12794: Django Debug Page - Cross-Site Scripting
- POC CVE-2019-11248: Debug Endpoint pprof - Exposure Detection
- POC CVE-2021-3129: Laravel with Ignition <= v8.4.2 Debug Mode - Remote Code Execution
- POC azure-appservice-remote-debugging-enabled: Azure App Service Remote Debugging Enabled
- POC android-debug-enabled: Android Debug Enabled
- POC yii-debugger: View Yii Debugger Information
- POC django-debug-exposure: Django Debug Exposure
- POC event-debug-server-status: Event Debug Server Status
- POC firebase-debug-log: Firebase Debug Log File Exposure
- POC go-pprof-debug: Go pprof Debug Page