Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CNR Hikaye Portal 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/hikaye.mdb.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CNR Hikaye Portal 数据库'db/hikaye.mdb'信息泄露漏洞
Vulnerability Description
CNR Hikaye Portal 数据库'db/hikaye.mdb'存在信息泄露漏洞。CNR Hikaye在web根目录下存储敏感信息而没有进行充分的访问控制,远程攻击者可以借助对数据库 db/hikaye.mdb的一个直接请求下载数据库。
CVSS Information
N/A
Vulnerability Type
N/A