Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Little Apps Little Software Stats Password Reset class.securelogin.php access control
Vulnerability Description
A vulnerability was found in Little Apps Little Software Stats. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file inc/class.securelogin.php of the component Password Reset Handler. The manipulation leads to improper access controls. The complexity of an attack is rather high. The exploitation appears to be difficult. Upgrading to version 0.2 is able to address this issue. The identifier of the patch is 07ba8273a9311d1383f3686ac7cb32f20770ab1e. It is recommended to upgrade the affected component. The identifier VDB-218401 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
访问控制不恰当
Vulnerability Title
Little Software Stats 访问控制错误漏洞
Vulnerability Description
Little Software Stats是Little Apps开源的一个 Web 应用程序。提供开源的运行时智能解决方案。 Little Apps Little Software Stats存在访问控制错误漏洞,该漏洞源于组件Password Reset Handler文件inc/class.securelogin.php存在安全问题,导致访问控制不当。
CVSS Information
N/A
Vulnerability Type
N/A