Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Remote user enumeration in mymbCONNECT24, mbCONNECT24 <= 2.9.0
Vulnerability Description
In mymbCONNECT24, mbCONNECT24 <= 2.9.0 an unauthenticated user can enumerate valid backend users by checking what kind of response the server sends for crafted invalid login attempts.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
响应差异性信息暴露
Vulnerability Title
MB CONNECT LINE mbCONNECT24和MB CONNECT LINE mymbCONNECT24 安全漏洞
Vulnerability Description
Mb Connect Line MB CONNECT LINE mbCONNECT24和MB CONNECT LINE mymbCONNECT24都是德国MB CONNECT LINE(Mb Connect Line)公司的产品。MB CONNECT LINE mbCONNECT24是一套远程服务门户网站。该产品支持远程接入、数据记录和报警等功能。MB CONNECT LINE mymbCONNECT24是一款适用于虚拟环境的内部远程维护解决方案。 MB CONNECT LINE mbCONNECT24和
CVSS Information
N/A
Vulnerability Type
N/A