Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users to obtain sensitive information such as database and user credentials via error messages that are triggered by (1) a malformed hoststatustypes parameter to status/service/all or (2) a crafted request to config.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OP5 Monitor和OP5 Appliance 安全漏洞
Vulnerability Description
OP5 Monitor和OP5 Appliance都是瑞典OP5公司的网络监控软件,用于监控企业IT网络的性能、应用的使用情况等。 OP5 Monitor和OP5 Appliance 5.5.1之前的版本中的monitor/index.php脚本中存在安全漏洞。远程攻击者可通过发送特制的请求或畸形的‘hoststatustypes’参数到status/service/all URL产生错误消息,利用该漏洞获取敏感信息如用户证书。
CVSS Information
N/A
Vulnerability Type
N/A