Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In trytond/model/modelstorage.py in Tryton 4.2 before 4.2.21, 4.4 before 4.4.19, 4.6 before 4.6.14, 4.8 before 4.8.10, and 5.0 before 5.0.6, an authenticated user can order records based on a field for which he has no access right. This may allow the user to guess values.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tryton 访问控制错误漏洞
Vulnerability Description
Tryton是一套内容管理系统。 Tryton中的trytond/model/modelstorage.py文件存在访问控制错误漏洞,该漏洞源于网络系统或产品未正确限制来自未授权角色的资源访问。以下版本受到影响:Tryton 4.2.21之前的4.2版本,4.4.19之前的4.4版本,4.6.14之前的4.6版本,4.8.10之前的4.8版本,5.0.6之前的5.0版本。
CVSS Information
N/A
Vulnerability Type
N/A