https://pwnwiki.com/index.php?action=history&feed=atom&title=Download_Management_1.00_for_PHP-Fusion_%E6%9C%AC%E5%9C%B0%E6%96%87%E4%BB%B6%E5%8C%85%E5%90%AB%E6%BC%8F%E6%B4%9EDownload Management 1.00 for PHP-Fusion 本地文件包含漏洞 - Revision history2026-04-21T01:55:28ZRevision history for this page on the wikiMediaWiki 1.35.1https://pwnwiki.com/index.php?title=Download_Management_1.00_for_PHP-Fusion_%E6%9C%AC%E5%9C%B0%E6%96%87%E4%BB%B6%E5%8C%85%E5%90%AB%E6%BC%8F%E6%B4%9E&diff=1290&oldid=prevPwnwiki: Created page with "==INFO== <pre> source: https://www.securityfocus.com/bid/27618/info Download Management for PHP-Fusion is prone to multiple local file-include vulnerabilities because it fail..."2021-04-09T02:44:47Z<p>Created page with "==INFO== <pre> source: https://www.securityfocus.com/bid/27618/info Download Management for PHP-Fusion is prone to multiple local file-include vulnerabilities because it fail..."</p>
<p><b>New page</b></p><div>==INFO==<br />
<pre><br />
source: https://www.securityfocus.com/bid/27618/info<br />
<br />
Download Management for PHP-Fusion is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input.<br />
<br />
Exploiting these issues may allow an attacker to access potentially sensitive information and execute arbitrary local scripts in the context of the affected application.<br />
<br />
These issues affect Download Management 1.00; other versions may also be vulnerable. <br />
<br />
http://example.com/infusions/download_management/infusion.php?settings[locale]=LFI%00<br />
http://example.com/infusions/download_management/download_management.php?settings[locale]=LFI%00 <br />
</pre></div>Pwnwiki