漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NotifyLink Enterprise Server 安全绕过漏洞
Vulnerability Description
NotifyLink 3.0的Web界面并未正确地限制对已在GUI中禁用的函数的访问,从而允许远程通过身份验证的用户可以通过对某些URL的直接请求来绕过设置的限制。
CVSS Information
N/A
Vulnerability Type
N/A