Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Quadbase EspressReports ES 7 Update 9. It allows CSRF, whereby an attacker may be able to trick an authenticated admin level user into uploading malicious files to the web server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Quadbase EspressReports ES 跨站请求伪造漏洞
Vulnerability Description
Quadbase EspressReports ES是美国 (Quadbase)公司的一个应用软件。提供了一些特殊的报告和查询功能,使用户可以通过零客户端浏览器界面创建各种查询和报告。 Quadbase EspressReports ES 7 Update 9 存在跨站请求伪造漏洞,攻击者可利用该漏洞可以欺骗经过身份验证的管理员级别用户向web服务器上传恶意文件。
CVSS Information
N/A
Vulnerability Type
N/A