Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
BEA WebLogic Server and Express 6.0 through 7.0 does not properly restrict access to certain internal servlets that perform administrative functions, which allows remote attackers to read arbitrary files or execute arbitrary code.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BEA WebLogic Server和Express信息泄露漏洞
Vulnerability Description
BEA WebLogic Server以及Express 6.0到7.0版本没有正确限定某些执行管理函数的内部伺服程序的访问权限,远程攻击者可以利用该漏洞读取任意文件或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A