Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in index.aas in Application Access Server (A-A-S) 2.0.48 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary programs via a command job, (2) stop services via a setservice job, or (3) terminate processes via a killprocess job.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Klinzmann A-A-S服务器跨站脚本攻击漏洞
Vulnerability Description
A-A-S(Application Access Server)是一个免费的远程管理工具,允许使用基于WEB的客户端通过Internet启动或停止应用或服务。 A-A-S的index.aas页面存在多个跨站请求伪造漏洞,如果用户查看了恶意网页的话,远程攻击者就可以通过HTTP请求执行任意程序或终止服务或请求。
CVSS Information
N/A
Vulnerability Type
N/A