提出 #271141: NODERP NODERP <=6.0.2 Sensitive information leakage情報

タイトルNODERP NODERP <=6.0.2 Sensitive information leakage
説明The NODERP System, versions up to and including V6.0.2, has a sensitive information leakage vulnerability. The system stores logs in the /runtime/log directory using date as the filename, which can be directly accessed. These logs contain all parameters from the requests made to the system, potentially including sensitive user data. This information could be exploited by an unauthorized individual to gain access to the system.
ソース⚠️ https://note.zhaoj.in/share/M9ERphWTXUPj
ユーザー
 glzjin (UID 59815)
送信2024年01月22日 03:54 (2 年 ago)
モデレーション2024年01月29日 08:03 (7 days later)
ステータス承諾済み
VulDBエントリ252274 [Shanxi Diankeyun Technology NODERP 迄 6.0.2 /runtime/log 特権昇格]
ポイント19

Want to know what is going to be exploited?

We predict KEV entries!