Отправить #271141: NODERP NODERP <=6.0.2 Sensitive information leakageИнформация

НазваниеNODERP NODERP <=6.0.2 Sensitive information leakage
ОписаниеThe NODERP System, versions up to and including V6.0.2, has a sensitive information leakage vulnerability. The system stores logs in the /runtime/log directory using date as the filename, which can be directly accessed. These logs contain all parameters from the requests made to the system, potentially including sensitive user data. This information could be exploited by an unauthorized individual to gain access to the system.
Источник⚠️ https://note.zhaoj.in/share/M9ERphWTXUPj
Пользователь
 glzjin (UID 59815)
Представление22.01.2024 03:54 (2 лет назад)
Модерация29.01.2024 08:03 (7 days later)
Статуспринято
Запись VulDB252274 [Shanxi Diankeyun Technology NODERP до 6.0.2 /runtime/log эскалация привилегий]
Баллы19

Do you know our Splunk app?

Download it now for free!