Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Learningdigital.com, Inc. Orca HCM - Hard-code password
Vulnerability Description
The Orca HCM digital learning platform uses a weak factory default administrator password, which is hard-coded in the source code of the webpage in plain text, thus remote attackers can obtain administrator’s privilege without logging in.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
LearningDigital Orca HCM digital learning platform 安全漏洞
Vulnerability Description
LearningDigital Orca HCM digital learning platform是中国一宇数位(LearningDigital)公司的一个数字学习平台。 Orca HCM digital learning platform存在安全漏洞,该漏洞源于平台使用弱工厂默认管理员密码,该密码以明文形式硬编码到网页的源代码中,远程攻击者可利用该漏洞无需登录即可获得管理员权限。
CVSS Information
N/A
Vulnerability Type
N/A