Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Predictable Page Indexing Might Lead to Sensitive Data Exposure in Mautic
Vulnerability Description
Mautic uses predictable page indices for unpublished landing pages, their content can be accessed by unauthenticated users under public preview URLs which could expose sensitive data. At the time of publication of the CVE no patch is available
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
直接请求(强制性浏览)
Vulnerability Title
Mautic 安全漏洞
Vulnerability Description
Mautic是一款开源的营销自动化软件。该软件能够监控管理网站、发送电子邮件并管理客户资源。 Mautic存在安全漏洞,该漏洞源于对未发布的登陆页面使用可预测的页面索引,未经身份验证的用户可以通过公共预览URL访问其内容,这可能会暴露敏感数据。
CVSS Information
N/A
Vulnerability Type
N/A