CNNVD-202507-644 Information
Jul 07, 2025
cve
CNNVD ID
CNNVD-202507-644
Related CVE
- CNNVD Published: 2025-07-07
Description (Chinese)
BoyunCMS是中国博云(Boyun)公司的一款企业内容管理系统。 BoyunCMS 1.4.20及之前版本存在安全漏洞,该漏洞源于文件/install/install_ok.php中参数db_pass处理不当,可能导致代码注入。
Description (English)
BoyunCMS is an enterprise content management system for Boyun, China. BoyunCMS 1.4.20 and previous versions contain a security loophole that stems from the inappropriate handling of the parameter db pass in the file/install/install ok.php, which may lead to code injection.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
博云
Published
2025-07-07
Last Modified
2026-02-24
References
https://note-hxlab.wetolink.com/share/6wemW8CnOMbu https://vuldb.com/?ctiid.315015 https://vuldb.com/?id.315015 https://vuldb.com/?submit.604323
Patch
https://www.boyunweb.cn/pc/index57/index/classid/26/id/42.html
Share on: