Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Authorization Bypass on UPV PEIX
Vulnerability Description
Authorization bypass vulnerability in UPV PEIX, affecting the component "pdf_curri_new.php". Through a POST request, an authenticated user could change the ID parameter to retrieve all the stored information of other registered users.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
Universitat Politècnica de València PEIX 安全漏洞
Vulnerability Description
Universitat Politècnica de València PEIX是西班牙瓦伦西亚理工大学(Universitat Politècnica de València)的网络信息管理平台。 Universitat Politècnica de València PEIX 存在安全漏洞,该漏洞源于组件pdf_curri_new.php存在授权绕过漏洞,通过 POST 请求,用户可以更改 ID 参数,以检索其他注册用户的所有存储信息。
CVSS Information
N/A
Vulnerability Type
N/A