Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WhatsUp Gold Server-Side Request Forgery Information Disclosure Vulnerability via FaviconController
Vulnerability Description
In WhatsUp Gold versions released before 2023.1.2 , a blind SSRF vulnerability exists in Whatsup Gold's FaviconController that allows an attacker to send arbitrary HTTP requests on behalf of the vulnerable server.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
Progress Software WhatsUp Gold 代码问题漏洞
Vulnerability Description
Progress Software WhatsUp Gold是美国Progress Software公司的一款网络监控软件。用于监控整个网络基础设施以及应用程序、配置和网络流量。 Progress Software WhatsUp Gold 2023.1.2之前版本存在代码问题漏洞,该漏洞源于存在盲服务端请求伪造漏洞,允许攻击者发送任意HTTP请求。
CVSS Information
N/A
Vulnerability Type
N/A