Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Remote Code Execution in Databasir
Vulnerability Description
Databasir is a team-oriented relational database model document management platform. Databasir 1.01 has remote code execution vulnerability. JDBC drivers are not validated prior to use and may be provided by users of the system. This can lead to code execution by any basic user who has access to the system. Users are advised to upgrade. There are no known workarounds to this issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Databasir 输入验证错误漏洞
Vulnerability Description
Databasir是一个面向团队的关系型数据库模型文档管理平台。 Databasir 1.01存在安全漏洞,该漏洞源于 JDBC 驱动程序在使用前未经验证导致任何有权访问系统的基本用户执行代码。
CVSS Information
N/A
Vulnerability Type
N/A