Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple directory traversal vulnerabilities in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allow remote attackers to read and delete arbitrary files via the tmpfname parameter to (1) log_mgt_adhocquery_ajaxhandler.php, (2) log_mgt_ajaxhandler.php, (3) log_mgt_ajaxhandler.php or (4) tf parameter to wcs_bwlists_handler.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trend Micro Smart Protection Server 路径遍历漏洞
Vulnerability Description
Trend Micro Smart Protection Server是美国趋势科技(Trend Micro)公司的一款提供智能保护的服务器。 Trend Micro Smart Protection Server存在目录遍历漏洞。远程攻击者可通过向log_mgt_adhocquery_ajaxhandler.php文件、log_mgt_ajaxhandler.php文件或log_mgt_ajaxhandler.php文件发送‘tmpfname’参数,或向wcs_bwlists_handler.php文件
CVSS Information
N/A
Vulnerability Type
N/A