Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A cross-site request forgery (CSRF) token bypass was identified in PRTG 23.2.84.1566 and earlier versions that allows remote attackers to perform actions with the permissions of a victim user, provided the victim user has an active session and is induced to trigger the malicious request. This could force PRTG to execute different actions, such as creating new users. The severity of this vulnerability is high and received a score of 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Paessler PRTG Network Monitor 跨站请求伪造漏洞
Vulnerability Description
Paessler PRTG Network Monitor是德国Paessler公司的一款全功能网络监控管理软件。 Paessler PRTG Network Monitor 23.2.83.1760 版本存在跨站请求伪造漏洞,该漏洞源于当选择 HTTP 协议时,NetApp Volume Sensor 通过网络传输明文凭据。
CVSS Information
N/A
Vulnerability Type
N/A