Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple unknown vulnerabilities in viewcvs before 0.9.2, when exporting a repository as a tar archive, does not properly implement the hide_cvsroot and forbidden settings, which could allow remote attackers to gain sensitive information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ViewCVS repository 弱安全机制漏洞
Vulnerability Description
ViewCVS是一款查看CVS系统的脚本,可使用在Unix和Linux操作系统下,也可使用在Microsoft Windows操作系统下。 ViewCVS 0.9.2之前版本存在多个未知漏洞,导致信息泄露。 在导出TAR档时,由于没有正确处理hide_cvsroot和权限设置,远程攻击者可获取部分受限制文件,获得敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A