Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The /WmAdmin/,/invoke/vm.server/login login page in the Integration Server in Software AG webMethods 10.15.0 before Core_Fix7 allows remote attackers to reach the administration panel and discover hostname and version information by sending an arbitrary username and a blank password to the /WmAdmin/#/login/ URI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Software AG webMethods 安全漏洞
Vulnerability Description
Software AG webMethods是Software AG公司的一套集成和应用程序开发工具,用于帮助组织实现应用程序集成、数据集成、业务流程管理和应用程序开发等任务。webMethods 旨在帮助企业更好地管理其IT生态系统,提高效率,加速业务流程,并实现数字化转型。 Software AG webMethods 10.15.0之前版本存在安全漏洞,该漏洞源于页面认证绕过问题,允许远程攻击者访问管理面板并获取主机名和版本信息。
CVSS Information
N/A
Vulnerability Type
N/A