Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SourceCodester Train Scheduler App resource injection
Vulnerability Description
A vulnerability was found in SourceCodester Train Scheduler App 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /train_scheduler_app/?action=delete. The manipulation of the argument id leads to improper control of resource identifiers. The attack may be launched remotely. The identifier of this vulnerability is VDB-212504.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Vulnerability Type
对资源描述符的控制不恰当(资源注入)
Vulnerability Title
Train Scheduler App 安全漏洞
Vulnerability Description
Train Scheduler App是Carlo Montero个人开发者的一个火车调度应用程序。 Train Scheduler App 1.0版本存在安全漏洞,该漏洞源于文件/train_scheduler_app/?action=delete的未知功能受到影响,对参数id的操作会导致对资源标识符的不当控制。
CVSS Information
N/A
Vulnerability Type
N/A