*

2017-09-25 21:31:10 +08:00 · 2017-09-25 21:31:10 +08:00 · d518bf08a4
commit d518bf08a4
parent 410f713b49
1 changed files with 5 additions and 2 deletions
--- a/CMS/sugarCRM/sugarCRM_v6.5.23/README.md
+++ b/CMS/sugarCRM/sugarCRM_v6.5.23/README.md
@ -1,3 +1,6 @@
-sugarCRM v6.5.23 反序列化漏洞(对象注入漏洞)绕过__wakeup 影响版本 SugarCRM <= 6.5.23 PHP5 < 5.6.25 PHP7 < 7.0.10 
+sugarCRM反序列化漏洞(对象注入漏洞)绕过__wakeup 

-修复建议:include/utils.php sugar_unserialize函数正则匹配修正为 /[oc]:[^:]*\d+:/i
+影响版本 SugarCRM <= 6.5.23 PHP5 < 5.6.25 PHP7 < 7.0.10 
+
+修复建议：
+	include/utils.php sugar_unserialize函数正则匹配修正为 /[oc]:[^:]*\d+:/i