Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Visibility Software Cyber Recruiter before 8.1.00 does not use the appropriate combination of HTTPS transport and response headers to prevent access to (1) AppSelfService.aspx and (2) AgencyPortal.aspx in the browser history, which allows remote attackers to obtain sensitive information by leveraging an unattended workstation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Visibility Software Cyber Recruiter 信息泄露漏洞
Vulnerability Description
Visibility Software Cyber Recruiter是美国Visibility软件公司的一套网络招聘解决方案。该方案提供面试安排、面试评价表、入职信息管理等功能。 Visibility Software Cyber Recruiter 8.0及之前版本中存在信息泄露漏洞,该漏洞源于程序没有阻止未授权用户访问保护的网页。远程攻击者可通过发送请求到AppSelfService.aspx和AgencyPortal.aspx页面利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A