CNNVD-202507-3911 Information
CNNVD ID
CNNVD-202507-3911
Related CVE
- CNNVD Published: 2025-07-31
Description (Chinese)
Kloxo是LxCenter开源的一个托管平台。 Kloxo 6.1.12之前版本存在安全漏洞,该漏洞源于login-name参数未经验证,可能导致SQL注入和远程命令执行。
Description (English)
Kloxo is a hosting platform for the LxCenter open source. There is a security loophole in the pre-Kloxo 6.1.12 version, which stems from unverified login-name parameters, which may lead to SQL injection and remote command execution.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
LxCenter
Published
2025-07-31
Last Modified
2026-02-24
References
https://github.com/lxcenter/kloxo https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/linux/ http://www.webhostingtalk.com/showthread.php?p=8996984 https://web.archive.org/web/20140301125222/ https://vpsboard.com/topic/3384-kloxo-installations-compromised/ https://web.archive.org/web/20141118054734/ https://www.exploit-db.com/exploits/31577 https://www.vulncheck.com/advisories/kloxo-unauth-sqli-rce
Share on: