Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Improper input validation in portal component in Odoo Community 12.0 and earlier and Odoo Enterprise 12.0 and earlier, allows remote attackers to trick victims into modifying their account via crafted links, leading to privilege escalation.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Odoo 输入验证错误漏洞
Vulnerability Description
Odoo是比利时Odoo公司的一套企业资源计划(ERP)和客户关系管理(CRM)系统。该系统采用Python语言开发,PostgreSQL作为数据库,并包括销售管理、库存管理、财务管理等模块。 Odoo Community 12.0版本及之前版本和 Odoo Enterprise 12.0版本及之前版本存在输入验证错误漏洞,该漏洞源于门户组件中输入验证不正确,允许远程攻击者可利用该漏洞通过精心设计的链接欺骗受害者修改他们的帐户,导致权限升级。
CVSS Information
N/A
Vulnerability Type
N/A