Skip to content

Vulnerability Local File Inclusion #14

Open
@advidsec

Description

@advidsec

This bug was found using the portal in the files:

/wechat-broadcast/wechat/Image.php

The parameter "url" it is not sanitized allowing include local or remote files.

Please contact me at advidsec@gmail.com for more info (i send you and email with extended info)

Metadata

Metadata

Assignees

Labels

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions