Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Aptos Wisal payroll accounting before 7.1.6 uses hardcoded credentials in the Windows client to fetch the complete list of usernames and passwords from the database server, using an unencrypted connection. This allows attackers in a machine-in-the-middle position read and write access to personally identifiable information (PII) and especially payroll data and the ability to impersonate legitimate users with respect to the audit log.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Aptos Wisal payroll 安全漏洞
Vulnerability Description
Aptos Wisal payroll是卢森堡Aptos公司的一款专注于零售行业的企业资源计划(ERP)解决方案。 Aptos Wisal payroll 7.1.6之前版本存在安全漏洞,该漏洞源于使用硬编码凭据。攻击者利用该漏洞使用未加密的连接从数据库服务器获取用户名和密码的完整列表。
CVSS Information
N/A
Vulnerability Type
N/A