Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Endalia Selection Portal before 4.205.0, an Insecure Direct Object Reference (IDOR) allows any authenticated user to download every file uploaded to the platform by changing the value of the file identifier (aka CommonDownload identification number).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Endalia Selection Porta 安全漏洞
Vulnerability Description
Endalia Selection Porta是西班牙Endalia公司的一个应用软件。提供一个吸引和选拔人才的软件。 Endalia Selection Portal 中存在安全漏洞。该漏洞源于一个不安全的对象引用允许任何登录的用户通过修改文件标识符来上传任意文件。 以下产品及版本受到影响:Endalia Selection Portal 4.205.0 之前版本。
CVSS Information
N/A
Vulnerability Type
N/A