Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the Upload Widget in OutSystems Platform 10 before 10.0.1019.0. An unauthenticated attacker can upload arbitrary files. In some cases, this attack may consume the available database space (Denial of Service), corrupt legitimate data if files are being processed asynchronously, or deny access to legitimate uploaded files.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L
Vulnerability Type
N/A
Vulnerability Title
Outsystems OutSystems Platform 代码问题漏洞
Vulnerability Description
Outsystems OutSystems Platform是美国OutSystems(Outsystems)公司的一套企业级低代码开发平台。该平台主要用于应用程序的可视化开发。 OutSystems Platform 10 10.0.1019.0之前版本存在代码问题漏洞,该漏洞源于Upload小部件中发现了一个问题。未经身份验证的攻击者可以上传任意文件。在某些情况下,这种攻击可能会消耗可用的数据库空间(拒绝服务),破坏正在异步处理文件的合法数据,或者拒绝对合法上传文件的访问。
CVSS Information
N/A
Vulnerability Type
N/A