Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tolgee's configuration all configuration properties leaked in public configuration DTO
Vulnerability Description
Tolgee is an open-source localization platform. Tolgee 3.81.1 included the all configuration properties in the PublicConfiguratioDTO publicly exposed to users. This vulnerability is fixed in v3.81.2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
信息暴露
Vulnerability Title
Tolgee 安全漏洞
Vulnerability Description
Tolgee是Tolgee开源的一个开源的多语言翻译和本地化平台,旨在帮助开发团队轻松管理和维护多语言的软件应用程序和网站。 Tolgee 3.81.1版本存在安全漏洞,该漏洞源于将所有配置属性包含在向用户公开的PublicConfiguratioDTO中。
CVSS Information
N/A
Vulnerability Type
N/A