| Titel | 北京植得智能互联科技有限公司 瑞田现代农场数字化综合管理系统 v1.0 Exposure of Information Through Directory Listing |
|---|
| Beschreibung | The server has not disabled the directory listing feature, if a visitor accesses a directory without a default index file (such as index.html or index.php), the server may list all the files and subdirectories within that directory. This allows attackers to easily view and download sensitive files within the directory, such as tokens. |
|---|
| Quelle | ⚠️ https://github.com/fubxx/CVE/blob/main/%E7%91%9E%E7%94%B0%E7%8E%B0%E4%BB%A3%E5%86%9C%E5%9C%BA%E6%95%B0%E5%AD%97%E5%8C%96%E7%BB%BC%E5%90%88%E7%AE%A1%E7%90%86%E7%B3%BB%E7%BB%9F%E7%9B%AE%E5%BD%95%E9%81%8D%E5%8E%86.md |
|---|
| Benutzer | LI YU (UID 67398) |
|---|
| Einreichung | 25.02.2025 09:40 (vor 1 Jahr) |
|---|
| Moderieren | 10.03.2025 07:00 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 299058 [Beijing Zhide Intelligent Internet Technology Modern Farm Digital Integrated Management System 1.0 erweiterte Rechte] |
|---|
| Punkte | 18 |
|---|