Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Best Practical Solutions RT 4.x before 4.0.6 does not properly implement the DisallowExecuteCode option, which allows remote authenticated users to bypass intended access restrictions and execute arbitrary code by leveraging access to a privileged account, a different vulnerability than CVE-2011-4458 and CVE-2011-5092.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Best Practical Solutions RT安全绕过漏洞
Vulnerability Description
Best Practical Solutions RT是美国Best Practical Solutions公司的一套企业级的问题跟踪系统。该系统主要用于Bug跟踪、客户服务、工作流程处理、更改管理等。 Best Practical Solutions RT 4.0.6之前的4.x版本中存在漏洞,该漏洞源于未正确实现DisallowExecuteCode选项。远程认证用户可通过访问特权账户绕过预期访问限制,进而执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A