Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The radware AppWall Web Application Firewall (WAF) 1.0.2.6, with Gateway 4.6.0.2, allows remote attackers to read source code via a direct request to (1) funcs.inc, (2) defines.inc, or (3) msg.inc in Management/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
radware AppWall Web应用防火墙源码泄露漏洞
Vulnerability Description
Radware AppWall是一款硬件的Web应用防火墙(WAF) 。 radware AppWall防火墙在运行为客户端和所保护的Web服务器之间的反向代理。在转发给Web服务器之前,所有的HTTP请求都经过检查。可通过一个正常情况下外部用户无法访问的独立管理页面来管理设备,这个Web页面是使用PHP编程语言实现的。有些功能存储在了include文件中,在需要时嵌入。由于Web服务器没有解释扩展名为*.inc的文件,因此能够访问管理界面的用户可以通过直接请求所包含的文件来访问部分产品源码 。
CVSS Information
N/A
Vulnerability Type
N/A