| 제목 | https://doc.cms.talelin.com/ Lin-CMS 0.6.0 weak password |
|---|
| 설명 | Lin CMS is a CMS solution that separates the front and back ends. Lin not only provides background support, but also has a corresponding front-end system. Lin currently has implementation in Python, Node.js and Java versions.
The tests folder is a file used by developers for testing, and the config.py file exists in the tests folder.This file contains the administrator's default account and password.Due to the failure to delete and clean up in time, a security risk was left behind.
Attackers can directly log in with the default administrator account and password that have not been cleared, gain control of the account, and thus face high risks such as complete system takeover and leakage of sensitive information.
|
|---|
| 원천 | ⚠️ https://github.com/m3ngx1ng/cve/blob/4690d4020a4a642af4c50912f762937292228641/lin-cms.md |
|---|
| 사용자 | m3x1 (UID 92411) |
|---|
| 제출 | 2025. 12. 23. AM 10:22 (4 개월 ago) |
|---|
| 모더레이션 | 2025. 12. 27. PM 02:55 (4 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 338528 [TaleLin Lin-CMS 까지 0.6.0 Tests Folder /tests/config.py username/password 정보 공개] |
|---|
| 포인트들 | 20 |
|---|