Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
internettoolbar/edit.php in YourPlace 1.0.2 and earlier does not end execution when an invalid username is detected, which allows remote attackers to bypass intended restrictions and edit toolbar settings via an invalid username. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
peterselie yourplace 'internettoolbar/edit.php'权限许可和访问控制漏洞
Vulnerability Description
当一个无效的用户名被检测出来时,YourPlace 1.0.2及之前版本中的internettoolbar/edit.php没有结束执行。这使得远程攻击者可以借助一个无效的用户名,绕过设置的限制和编辑工具栏设置。
CVSS Information
N/A
Vulnerability Type
N/A