Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Centova Cast 3.2.12 - Denial of Service
Vulnerability Description
Centova Cast 3.2.12 contains a denial of service vulnerability that allows attackers to overwhelm the system by repeatedly calling the database export API endpoint. Attackers can trigger 100% CPU load by sending multiple concurrent requests to the /api.php endpoint with crafted parameters.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
不加限制或调节的资源分配
Vulnerability Title
Centova Cast 安全漏洞
Vulnerability Description
Centova Cast是加拿大Centova公司的一个互联网广播流媒体管理控制面板。 Centova Cast 3.2.12版本存在安全漏洞,该漏洞源于重复调用数据库导出API端点,可能导致攻击者通过发送多个并发请求使系统CPU负载达到100%。
CVSS Information
N/A
Vulnerability Type
N/A