Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The directory manager in Caldera 9.20 allows remote attackers to conduct variable-injection attacks in the global scope via (1) the maindir_hotfolder parameter to dirmng/index.php, or an unspecified parameter to (2) PPD/index.php, (3) dirmng/docmd.php, or (4) dirmng/param.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Caldera 目录管理组件代码注入漏洞
Vulnerability Description
Caldera是法国Caldera公司的一套数码打样与色彩管理软件。该软件提供色彩管理、打印配置保存和打印机状态检测等功能。 Caldera 9.20版本的目录管理组件中存在安全漏洞,该漏洞源于多个脚本(包括:dirmng/index.php,PPD/index.php,dirmng/docmd.php,dirmng/param.php)没有充分过滤参数。远程攻击者可利用该漏洞实施变量注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A