Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Slanger 0.6.0 is affected by: Remote Code Execution (RCE). The impact is: A remote attacker can execute arbitrary commands by sending a crafted request to the server. The component is: Message handler & request validator. The attack vector is: Remote unauthenticated. The fixed version is: after commit 5267b455caeb2e055cccf0d2b6a22727c111f5c3.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Slanger Message handler&request validator 命令注入漏洞
Vulnerability Description
Slanger是一款使用Ruby编写的Pusher协议的开源服务器实现。Message handler&request validator是其中的一个消息处理和请求验证程序。 Slanger 0.6.0版本中Message handler&request validator存在安全漏洞。远程攻击者可通过发送特制的请求利用该漏洞执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A