CNNVD-202601-4719 Information

CNNVD ID

CNNVD-202601-4719

Related CVE

CVE-2020-36970

• CNNVD Published: 2026-01-28

Description (Chinese)

SIGB PMB是SIGB公司的一个开源集成图书馆管理系统。 SIGB PMB 5.6版本存在路径遍历漏洞，该漏洞源于getgif.php中对chemin参数的操作不当，可能导致本地文件泄露。

Description (English)

SIGB PMB is an open source integrated library management system for SIGB. Version 5.6 of SIGB PMB has a loophole in its path, which stems from the inappropriate operation of chemin parameters in Getgif.php, which may lead to the disclosure of local documents.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

SIGB

Published

2026-01-28

Last Modified

2026-02-24

References

http://forge.sigb.net/redmine/projects/pmb/files http://www.sigb.net https://www.exploit-db.com/exploits/49054 https://www.vulncheck.com/advisories/pmb-chemin-local-file-disclosure