Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Automated Logic WebCtrl Server Open Redirection Vulnerability
Vulnerability Description
Automated Logic's WebCtrl Server Version 6.1 'Help' index pages are vulnerable to open redirection. The vulnerability allows an attacker to send a maliciously crafted URL which could result in redirecting the user to a malicious webpage or downloading a malicious file.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Vulnerability Title
Automated Logic WebCtrl Server输入验证错误漏洞
Vulnerability Description
Automated Logic WebCtrl Server是美国Automated Logic公司的一个基于 Web 的楼宇自动化系统的服务器。 Automated Logic WebCtrl Server 6.1版本存在输入验证错误漏洞,该漏洞源于应用帮助”索引页容易受到打开重定向的影响。攻击者可以发送恶意制作的URL实现将用户重定向到恶意网页或下载恶意文件。
CVSS Information
N/A
Vulnerability Type
N/A