Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in DigDash 2018R2 before p20200210 and 2019R1 before p20200210. The login page is vulnerable to Server-Side Request Forgery (SSRF) that allows use of the application as a proxy. Sent to an external server, a forged request discloses application credentials. For a request to an internal component, the request is blind, but through the error message it's possible to determine whether the request targeted a open service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
DigDash 代码问题漏洞
Vulnerability Description
DigDash是法国DigDash公司的一套数据分析仪表板解决方案。 DigDash p20200210之前的2018R2版本和p20200210之前的2019R1版本中的登录页面存在代码问题漏洞。远程攻击者可利用该漏洞扫描应用程序的内部网络并获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A