Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In SapphireIMS 4097_1, a guest user is able to change the password of an administrative user by utilizing an Insecure Direct Object Reference (IDOR) in the "Account Password Reset" functionality.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tecknodreams SapphireIMS 安全漏洞
Vulnerability Description
Tecknodreams SapphireIMS是印度Tecknodreams公司的ITIL 2011 认证的企业级服务管理系统。 Tecknodreams SapphireIMS 4097_1 中存在安全漏洞,访客用户能够通过使用“帐户密码重置”功能中的不安全对象直接引用 (IDOR) 来更改管理用户的密码。
CVSS Information
N/A
Vulnerability Type
N/A