Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WISA Smart Wing CMS File Download Vulnerability
Vulnerability Description
This vulnerability is caused by the lack of validation of input values for specific functions if WISA Smart Wing CMS. Remote attackers can use this vulnerability to leak all files in the server without logging in system.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
下载代码缺少完整性检查
Vulnerability Title
WISA Smart Wing CMS 安全漏洞
Vulnerability Description
WISA Smart Wing CMS是韩国WISA公司的一个内容管理系统。 WISA Smart Wing CMS存在安全漏洞,该漏洞源于特定函数的输入值缺乏验证。远程攻击者利用该漏洞在不登录系统的情况下泄露服务器中的所有文件。
CVSS Information
N/A
Vulnerability Type
N/A