Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Odoo 8.0, Odoo Community Edition 9.0 and 10.0, and Odoo Enterprise Edition 9.0 and 10.0, insecure handling of anonymization data in the Database Anonymization module allows remote authenticated privileged users to execute arbitrary Python code, because unpickle is used.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Odoo产品Database Anonymization模块代码问题漏洞
Vulnerability Description
Odoo(前称OpenERP)等都是比利时Odoo公司的产品。Odoo是一套企业资源计划(ERP)和客户关系管理(CRM)系统;Odoo Community Edition是它的社区版;Odoo Enterprise Edition是它的企业版。Database Anonymization module是其中的一个数据库匿名化模块。 多款Odoo产品中的Database Anonymization模块存在代码问题漏洞。远程攻击者可利用该漏洞执行任意的Pyrhon代码。以下产品和版本受到影响:Odoo 8.
CVSS Information
N/A
Vulnerability Type
N/A