Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
FAQ manager for Request Tracker (RTFM) before 2.4.5 does not properly check user rights, which allows remote authenticated users to create arbitrary articles in arbitrary classes via unknown vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Request Tracker FAQ管理程序安全绕过漏洞
Vulnerability Description
Best Practical Solutions Request Tracker(RT)是美国Best Practical Solutions公司的一套企业级开源问题跟踪系统。该系统具有Bug跟踪、客户服务、自定义工作流等功能。 Request Tracker (RTFM) 2.4.5之前版本中的FAQ管理程序中存在漏洞,该漏洞源于未正确校验用户权限。远程认证攻击者利用该漏洞通过未知向量在任意类中创建任意文章。
CVSS Information
N/A
Vulnerability Type
N/A