Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SecureGate authentication bypass vulnerability
Vulnerability Description
This vulnerability of SecureGate is SQL-Injection using login without password. A path traversal vulnerability is also identified during file transfer. An attacker can take advantage of these vulnerabilities to perform various attacks such as obtaining privileges and executing remote code, thereby taking over the victim’s system.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用候选路径或通道进行的认证绕过
Vulnerability Title
HANSSAK SecureGate和WebLink SQL注入漏洞
Vulnerability Description
HANSSAK SecureGate和HANSSAK WebLink都是韩国HANSSAK公司的产品。HANSSAK SecureGate是一种在分离的网络环境中提供最高安全级别的网络间数据传输服务的解决方案。HANSSAK WebLink是一种网页链接软件。 SecureGate 3.5版本和WebLink 3.5.2至3.5.5版本存在安全漏洞,该漏洞源于存在使用无密码登录的SQL注入,在文件传输过程中存在路径遍历漏洞。攻击者可以利用这些漏洞进行各种攻击,例如获取权限和执行远程代码,从而接管受害者的系
CVSS Information
N/A
Vulnerability Type
N/A