Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
AdminExpress 1.2.5 Denial of Service via System Compare
Vulnerability Description
AdminExpress 1.2.5 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input through the System Compare feature. Attackers can paste a large buffer of characters into the Folder Path field and trigger the comparison function to cause the application to become unresponsive or crash.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
文件名或路径的外部可控制
Vulnerability Title
Admin Express 安全漏洞
Vulnerability Description
Admin Express是Admin Express公司的一款数据库管理工具。 Admin Express 1.2.5版本存在安全漏洞,该漏洞源于拒绝服务,可能导致本地攻击者通过系统比较功能提交超大输入使应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A