Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM Records Manager (RM) 4.5.x before 4.5.1.1-IER-FP001 places a session token in the URI, which might allow remote attackers to obtain sensitive information by reading a Referer log file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Records Manager信任管理漏洞
Vulnerability Description
IBM Records Manager 是管理企业电子和物理记录的整个生命周期(从创建到废弃)的应用程序。 IBM Records Manager (RM) 4.5.1.1-IER-FP001之前的4.5.x版本在URI中放置了会话令牌,此令牌会泄露会话中的网址。远程攻击者可以借助读取Referer日志文件获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A