إرسال #271141: NODERP NODERP <=6.0.2 Sensitive information leakageالمعلومات

عنوانNODERP NODERP <=6.0.2 Sensitive information leakage
الوصفThe NODERP System, versions up to and including V6.0.2, has a sensitive information leakage vulnerability. The system stores logs in the /runtime/log directory using date as the filename, which can be directly accessed. These logs contain all parameters from the requests made to the system, potentially including sensitive user data. This information could be exploited by an unauthorized individual to gain access to the system.
المصدر⚠️ https://note.zhaoj.in/share/M9ERphWTXUPj
المستخدم
 glzjin (UID 59815)
ارسال22/01/2024 03:54 AM (2 سنوات منذ)
الاعتدال29/01/2024 08:03 AM (7 days later)
الحالةتمت الموافقة
إدخال VulDB252274 [Shanxi Diankeyun Technology NODERP حتى 6.0.2 /runtime/log تجاوز الصلاحيات]
النقاط19

Interested in the pricing of exploits?

See the underground prices here!