Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IntraLearn Software IntraLearn 2.1, and possibly other versions before 4.2.3, allows remote attackers to obtain sensitive information via a direct request to (1) Knowledge_Impact_Course.htm, (2) LRN-formatted_Course.htm, or (3) Create_Course.htm in help/1/Instructor/, which reveals the installation path in an error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IntraLearn 敏感信息泄露漏洞
Vulnerability Description
IntraLearn Software IntraLearn 2.1以及4.2.3之前版本允许远程攻击者借助一个对help/1/Instructor/中的(1)Knowledge_Impact_Course.htm,(2)LRN-formatted_Course.htm或(3)Create_Course.htm的直接请求,获得敏感信息。该请求会在出错信息中显示安装路径。
CVSS Information
N/A
Vulnerability Type
N/A