漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie (UserID 1), i.e. "0888888."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Surf-Net ASP Forum可预测Cookie ID漏洞
Vulnerability Description
Surf-Net ASP Forum 2.30之前版本使用基于UserID的易可猜测的cookies。远程攻击者通过计算管理cookie值(UserID 1)也就是"0888888"提升管理特权。
CVSS Information
N/A
Vulnerability Type
N/A