Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Integria IMS incorrect authorization
Vulnerability Description
Integria IMS login check uses a loose comparator ("==") to compare the MD5 hash of the password provided by the user and the MD5 hash stored in the database. An attacker with a specific formatted password could exploit this vulnerability in order to login in the system with different passwords.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
不充分的比较
Vulnerability Title
Artica Integria IMS 安全漏洞
Vulnerability Description
Artica Integria IMS是西班牙Artica公司的一套基于Web的帮助台软件。该软件具有SLA跟踪、工作流程管理、个性化报告和电子邮件管理等功能。 Artica Integria IMS登录检查存在安全漏洞,使用特定格式化密码的攻击者可利用该漏洞以不同的密码登录系统。
CVSS Information
N/A
Vulnerability Type
N/A