漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
CodeAstro Internet Banking System pages_client_signup.php redirect
Vulnerability Description
A vulnerability, which was classified as problematic, was found in CodeAstro Internet Banking System 1.0. This affects an unknown part of the file pages_client_signup.php. The manipulation of the argument Client Full Name with the input <meta http-equiv="refresh" content="0; url=https://vuldb.com" /> leads to open redirect. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-251697 was assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Vulnerability Title
CodeAstro Internet Banking System 输入验证错误漏洞
Vulnerability Description
CodeAstro Internet Banking System是CodeAstro公司的一个PHP网上银行系统。 CodeAstro Internet Banking System 1.0版本存在输入验证错误漏洞,该漏洞源于pages_client_signup.php 中包含未知部分,使用特定输入通过参数 Client Full Name 会导致重定向。
CVSS Information
N/A
Vulnerability Type
N/A