N/A

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.1. There is a CSRF issue (with resultant SSRF) in the com_mb24proxy module, allowing attackers to steal session information from logged-in users with a crafted link.

N/A

N/A

MB CONNECT LINE mymbCONNECT24和mbCONNECT24 SQL跨站请求伪造漏洞

MB CONNECT LINE mbCONNECT24和MB CONNECT LINE mymbCONNECT24都是德国MB CONNECT LINE公司的产品。MB CONNECT LINE mbCONNECT24是一套远程服务门户网站。该产品支持远程接入、数据记录和报警等功能。MB CONNECT LINE mymbCONNECT24是一款适用于虚拟环境的内部远程维护解决方案。 MB CONNECT LINE mbCONNECT24和mymbCONNECT24 2.6.1之前版本存在SQL跨站请求伪

N/A

N/A