漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
SAP Commerce Cloud (Accelerator Payment Mock), versions - 1808, 1811, 1905, 2005, allows an unauthenticated attacker to submit a crafted request over a network to a particular SAP Commerce module URL which will be processed without further interaction, the crafted request leads to Server Side Request Forgery attack which could lead to retrieval of limited pieces of information about the service with no impact on integrity or availability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SAP Commerce Cloud 代码问题漏洞
Vulnerability Description
SAP Commerce Cloud是德国思爱普(SAP)公司的一个电商云平台。该平台提供企业级电商业务支持。 SAP Commerce Cloud (Accelerator Payment Mock) 1808版本, 1811版本, 1905版本, 2005版本存在安全漏洞,该漏洞源于允许未经过身份验证的攻击者通过网络提交了请求特定SAP商务模块URL将被处理,无需进一步的交互的请求会导致服务器端请求伪造攻击这可能导致检索有关服务的有限的信息而不影响完整性和可用性。
CVSS Information
N/A
Vulnerability Type
N/A