Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
UBICOD Medivision Digital Signage 1.5.1 Cross-Site Request Forgery via User Management
Vulnerability Description
UBICOD Medivision Digital Signage 1.5.1 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without proper request validation. Attackers can craft a malicious web page that submits a form to the /query/user/itSet endpoint to add a new admin user with elevated privileges.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
UBICOD Medivision Digital Signage 跨站请求伪造漏洞
Vulnerability Description
UBICOD Medivision Digital Signage是韩国UBICOD Medivision公司的一个医疗环境数字标牌软件。 UBICOD Medivision Digital Signage 1.5.1版本存在跨站请求伪造漏洞,该漏洞源于缺少请求验证,可能导致跨站请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A