Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
U&M Software Signup 1.0 and 1.1 does not require administrative authentication for all scripts in the admin/ directory, which allows remote attackers to have an unspecified impact via a direct request to (1) adminstart.php, (2) admineventtype.php, (3) admineventdetails.php, (4) admineventlist.php, (5) adminuserslist.php, (6) adminleaderslist.php, (7) admindatabase.php, and possibly (8) index.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
UochmU&M Software Signup 多个身份认证绕过漏洞
Vulnerability Description
U M Software Signup 1.0和1.1版本没有对admin/目录中的所有脚本进行管理身份认证,这使得远程攻击者可以借助一个对(1)adminstart.php, (2) admineventtype.php, (3)admineventdetails.php, (4)admineventlist.php,(5)adminuserslist.php, (6)adminleaderslist.php, (7)admindatabase.php以及可能 (8)index.php的直接请求,造成未
CVSS Information
N/A
Vulnerability Type
N/A