Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Random Cookie Password functionality in the loaduser function in cgi-bin/cgi-lib/subs.pl in web-app.org WebAPP before 0.9.9.7 does not clear the (1) username, (2) password, (3) usertheme, and (4) userlang cookies for unauthorized users, which has unknown impact and remote attack vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
web-app.org WebAPP远程攻击漏洞
Vulnerability Description
web-app.org WebAPP 0.9.9.7之前版本的cgi-bin/cgi-lib/subs.pl中的加载用户函数里的功能Random Cookie Password没有清除未授权用户的(1)用户名、(2)密码、(3)usertheme和(4)userlang cookies,这会造成未知影响和远程攻击向量。
CVSS Information
N/A
Vulnerability Type
N/A