Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Mendix Forgot Password Appstore module (All versions >= V3.3.0 < V3.5.1). In certain configurations of the affected product, a threat actor could use the sign up flow to hijack arbitrary user accounts.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
Siemens Mendix 访问控制错误漏洞
Vulnerability Description
Siemens Mendix是德国西门子(Siemens)公司的一套低代码应用程序开发平台。该平台提供应用程序开发、测试、部署和迭代等功能。 Mendix Forgot Password Appstore module 存在安全漏洞,该漏洞源于在Mendix Forgot Password Appstore模块(所有版本>= V3.3.0 < V3.5.1)的某些配置中,威胁参与者可以使用注册流劫持任意用户帐户。
CVSS Information
N/A
Vulnerability Type
N/A