Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel request by an admin.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Western Bridge Cobub Razor 跨站请求伪造漏洞
Vulnerability Description
Western Bridge Cobub Razor是一套开源的移动应用程序分析系统。该系统能够为用户提供详细的多维度报告并监控其移动应用和应用程序用户行为的统计数据。 Western Bridge Cobub Razor 0.7.2版本中存在安全漏洞,该漏洞源于程序没有对/index.php?/manage/channel/modifychannel执行身份验证。攻击者可利用该漏洞添加数据,执行恶意代码。
CVSS Information
N/A
Vulnerability Type
N/A