DISCUZ X3.0
|
| ID | 漏洞描述 | 文件路径 | 漏洞详细 |
| 1 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//api.php?mod[]=Seay |
<br /> <b>Warning</b>: array_key_exists() [<a href='function.array-key-exists'>function.array-key-exists</a>]: The first argument should be either a |
| 2 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//api/addons/zendcheck.php |
<br /> <b>Warning</b>: Unterminated comment starting line 3 in <b>G:\wamp\www\discuz3\api\addons\zendcheck53.php</b> on line <b>3</b><br /> |
| 3 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//api/addons/zendcheck52.php |
<br /> <b>Warning</b>: Unterminated comment starting line 3 in <b>G:\wamp\www\discuz3\api\addons\zendcheck52.php</b> on line <b>3</b><br /> |
| 4 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//api/addons/zendcheck53.php |
<br /> <b>Warning</b>: Unterminated comment starting line 3 in <b>G:\wamp\www\discuz3\api\addons\zendcheck53.php</b> on line <b>3</b><br /> |
| 5 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//source/plugin/mobile/api/1/index.php |
<br /> <b>Warning</b>: require_once(source/class/helper/helper_open.php) [<a href='function.require-once'>function.require-once</a>]: failed to open |
| 6 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//source/plugin/mobile/extends/module/dz_digest.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz3\source\plugin\mobile\extends\module\dz_digest.php</b> on line <b> |
| 7 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//source/plugin/mobile/extends/module/dz_newpic.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz3\source\plugin\mobile\extends\module\dz_newpic.php</b> on line <b> |
| 8 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//source/plugin/mobile/extends/module/dz_newreply.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz3\source\plugin\mobile\extends\module\dz_newreply.php</b> on line < |
| 9 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//source/plugin/mobile/extends/module/dz_newthread.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz3\source\plugin\mobile\extends\module\dz_newthread.php</b> on line |
| 10 | 存在敏感信息泄露漏洞 |
http://localhost/discuz3//uc_server/control/admin/db.php |
<br /> <b>Fatal error</b>: Class ‘adminbase’ not found in <b>G:\wamp\www\discuz3\uc_server\control\admin\db.php</b> on line <b>3</b><br /> |
Seay代码审计系统漏洞报告
审计结果:发现可疑漏洞总数:7个
| ID | 漏洞描述 | 文件路径 | 漏洞详细 |
| 1 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//api.php?mod[]=Seay |
<br /> <b>Warning</b>: array_key_exists() [<a href='function.array-key-exists'>function.array-key-exists</a>]: The first argument should be either a |
| 2 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//install/include/install_lang.php |
<br /> <b>Notice</b>: Use of undefined constant SOFT_NAME – assumed ‘SOFT_NAME’ in <b>G:\wamp\www\discuz\install\include\install_lang.php</b> on line |
| 3 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//source/plugin/mobile/extends/module/dz_digest.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz\source\plugin\mobile\extends\module\dz_digest.php</b> on line <b>9 |
| 4 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//source/plugin/mobile/extends/module/dz_newpic.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz\source\plugin\mobile\extends\module\dz_newpic.php</b> on line <b>9 |
| 5 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//source/plugin/mobile/extends/module/dz_newreply.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz\source\plugin\mobile\extends\module\dz_newreply.php</b> on line <b |
| 6 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//source/plugin/mobile/extends/module/dz_newthread.php |
<br /> <b>Fatal error</b>: Class ‘extends_data’ not found in <b>G:\wamp\www\discuz\source\plugin\mobile\extends\module\dz_newthread.php</b> on line < |
| 7 | 存在敏感信息泄露漏洞 |
http://localhost/discuz//uc_server/control/admin/db.php |
<br /> <b>Fatal error</b>: Class ‘adminbase’ not found in <b>G:\wamp\www\discuz\uc_server\control\admin\db.php</b> on line <b>3</b><br /> |
|
|
