Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Progress OpenEdge OEM (OpenEdge Management) and OEE (OpenEdge Explorer) before 12.7, a remote user (who has any OEM or OEE role) could perform a URL injection attack to change identity or role membership, e.g., escalate to admin. This affects OpenEdge LTS before 11.7.16, 12.x before 12.2.12, and 12.3.x through 12.6.x before 12.7.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Progress OpenEdge 注入漏洞
Vulnerability Description
Progress OpenEdge是一款应用程序。 Progress OpenEdge LTS 11.7.16之前版本、12.x版本至12.2.12之前版本、12.3.x版本至12.6.x版本存在安全漏洞,该漏洞源于远程用户可以执行 URL 注入攻击来更改身份或角色成员资格,例如升级为管理员。
CVSS Information
N/A
Vulnerability Type
N/A