Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Upload method in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls does not properly restrict certain property values, which allows remote attackers to read arbitrary files via a filename in the SourceFile property in conjunction with an http URL in the DestURL property.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RealPage Module ActiveX Controls Upload ActiveX控件信息泄露漏洞
Vulnerability Description
RealPage Module ActiveX Controls中的Realpage.dll 1.0.0.9版本中的RealPage Module Upload ActiveX控件中的Upload方法不能正确限制某些属性值。远程攻击者可以借助SourceFile属性中的文件名并结合DestURL属性中的http URL读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A