Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Kurmi Provisioning Suite before 7.9.0.35 and 7.10.x through 7.10.0.18. A Directory Traversal and Local File Inclusion vulnerability in the logsSys.do page allows remote attackers (authenticated as administrators) to trigger the display of unintended files. Any file accessible to the Kurmi user account could be displayed, e.g., configuration files with information such as the database password.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kurmi Provisioning Suite 安全漏洞
Vulnerability Description
Kurmi Provisioning Suite是Kurmi公司的一个基础设施管理套件。 Kurmi Provisioning Suite 7.9.0.35之前版本和7.10.x版本至7.10.0.18版本存在安全漏洞。攻击者利用该漏洞可以访问任何文件,例如包含数据库密码等信息的配置文件。
CVSS Information
N/A
Vulnerability Type
N/A