Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Syltek Insufficient Verification of Data Authenticity
Vulnerability Description
Syltek application before its 10.22.00 version, does not correctly check that a product ID has a valid payment associated to it. This could allow an attacker to forge a request and bypass the payment system by marking items as payed without any verification.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
对数据真实性的验证不充分
Vulnerability Title
Syltek application 数据伪造问题漏洞
Vulnerability Description
Syltek application是一款应用程序。 Syltek application 10.22.00 版本之前存在安全漏洞,该漏洞允许攻击者伪造请求并通过将项目标记为已付款而绕过支付系统而无需任何验证。
CVSS Information
N/A
Vulnerability Type
N/A