Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Path Traversal in OpenClinica
Vulnerability Description
OpenClinica is an open source software for Electronic Data Capture (EDC) and Clinical Data Management (CDM). OpenClinica prior to version 3.16 is vulnerable to path traversal in multiple endpoints, leading to arbitrary file read/write, and potential remote code execution. There are no known workarounds. This issue has been patched and users are recommended to upgrade.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
OpenClinica 路径遍历漏洞
Vulnerability Description
OpenClinica是一个用于电子数据采集(EDC)和临床数据管理(CDM)的商业开源临床试验软件。 OpenClinica 3.16之前版本存在安全漏洞,该漏洞源于OpenClinica易受多端点路径遍历的影响,从而导致任意文件读写和远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A