Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Apache Subversion SVN authz protected copyfrom paths regression
Vulnerability Description
Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, users with access to the copy can see the 'copyfrom' path of the original. This also reveals the fact that the node was copied. Only the 'copyfrom' path is revealed; not its contents. Both httpd and svnserve servers are vulnerable.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
Apache Subversion 信息泄露漏洞
Vulnerability Description
Apache Subversion是美国阿帕奇(Apache)基金会的一套开源的版本控制系统。该系统可兼容并发版本系统(CVS)。 Apache Subversion 1.14.1 之前版本存在信息泄露漏洞,该漏洞源于服务器暴露了应该根据配置的基于路径的授权 (authz) 规则隐藏的“copyfrom”路径。攻击者利用该漏洞可以看到原始节点的“copyfrom”路径。
CVSS Information
N/A
Vulnerability Type
N/A