Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
EXCELLENT INFOTEK BiYan v1.57 ~ v2.8 allows an attacker to leak user information without being authenticated, by sending a LOGIN_ID element to the auth/main/asp/check_user_login_info.aspx URI, and then reading the response, as demonstrated by the KW_EMAIL or KW_TEL field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EXCELLENT INFOTEK BiYan 信息泄露漏洞
Vulnerability Description
EXCELLENT INFOTEK BiYan是中国台湾杰印资讯(EXCELLENT INFOTEK)公司的一套文档管理系统。 EXCELLENT INFOTEK BiYan 1.57版本至2.8版本中存在信息泄露漏洞。该漏洞源于网络系统或产品在运行过程中存在配置等错误。未授权的攻击者可利用漏洞获取受影响组件敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A