Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WisdomGarden Tronclass ilearn - Path Traversal
Vulnerability Description
NCSIST ManageEngine Mobile Device Manager(MDM) APP's special function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and read arbitrary system files.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
WisdomGarden Tronclass ilearn 安全漏洞
Vulnerability Description
WisdomGarden Tronclass ilearn是中国智园(WisdomGarden)公司的一个教学平台。 WisdomGarden Tronclass ilearn存在安全漏洞,该漏洞源于上传档案功能未进行适当的权限管控,远程攻击者可以使用一般权限登录后,变更URL中的档案ID,即可查看其他使用者上传的档案。
CVSS Information
N/A
Vulnerability Type
N/A