Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bitpay/insight-api Insight-api transaction broadcast endpoint 输入验证漏洞
Vulnerability Description
Bitpay/insight-api Insight-api是美国Bitpay公司的一套使用比特币进行支付的软件。transaction broadcast endpoint是其中的一个支付终端。 Bitpay/insight-api Insight-api 5.0.0及之前版本中的transaction broadcast endpoint存在输入验证漏洞。攻击者可通过发送Web请求利用该漏洞获取完整路径。
CVSS Information
N/A
Vulnerability Type
N/A