Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An attacker can include file contents from outside the `/adapter/xxx/` directory, where `xxx` is the name of an existent adapter like "admin". It is exploited using the administrative web panel with a request for an adapter file. **Note:** The attacker has to be logged in if the authentication is enabled (by default isn't enabled).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ioBroker.js-controller 路径遍历漏洞
Vulnerability Description
ioBroker.js-controller是一款用于ioBroker物联网平台的中央控制器。 ioBroker.js-controller中存在安全漏洞。攻击者可利用该漏洞包含/adapter/xxx/目录之外的文件内容。
CVSS Information
N/A
Vulnerability Type
N/A