Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface in the Scheduler in SolarWinds (formerly Serv-U) FTP Voyager 16.2.0 allow remote attackers to hijack the authentication of users for requests that (1) change the admin password, (2) terminate the scheduler, or (3) possibly execute arbitrary commands via crafted requests to Admin/XML/Result.xml.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SolarWinds FTP Voyager Scheduler 跨站请求伪造漏洞
Vulnerability Description
SolarWinds (前称Serv-U) FTP Voyager Scheduler是美国SolarWinds公司的一套工作任务安排调度的应用程序。 SolarWinds FTP Voyager 16.2.0版本中的Scheduler的Web界面存在跨站请求伪造漏洞。远程攻击者可利用该漏洞更改admin密码,终止调度程序,执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A