N/A

Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote attackers to obtain sensitive information via a direct request for /dashboard/addplan, /dashboard/paywithcard/charge, /dashboard/withdrawal, or /privacy&terms, as demonstrated by reading database username, database password, database_name, and IP address fields, related to CVE-2018-12908.

N/A

N/A

Online Trade - Online trading and cryptocurrency investment system 安全漏洞

Brynamics Online Trade是一套用于在线交易加密货币的系统。 Brynamics Online Trade中存在安全漏洞。远程攻击者可通过直接请求/dashboard/addplan，/dashboard/paywithcard/charge，/dashboard/withdrawal或/privacy&terms利用该漏洞获取敏感信息，例如读取数据库用户名，数据库密码，数据库名称和IP地址字段。

N/A

N/A