Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
e-Excellence U-Office Force - Error Message Leakage
Vulnerability Description
e-Excellence U-Office Force generates an error message in webiste service. An unauthenticated remote attacker can obtain partial sensitive system information from error message by sending a crafted command.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过错误消息导致的信息暴露
Vulnerability Title
e-Excellence U-Office Force 安全漏洞
Vulnerability Description
e-Excellence U-Office Force是中国一等一科技(e-Excellence)公司的一个电子办公室平台。 e-Excellence U-Office Force 存在安全漏洞,该漏洞源于在主机启用网页服务并可从外部存取UOF 应用程式的条件下,攻击者可藉由发送特定指令,从网页服务回传的错误讯息中取得部分系统资讯。
CVSS Information
N/A
Vulnerability Type
N/A