Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Lucee before 5.4.7.3 LTS and 6 before 6.1.1.118, when an attacker can place files on the server, is vulnerable to a protection mechanism failure that can let an attacker run code that would be expected to be blocked and access resources that would be expected to be protected.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
在安全决策中依赖未经信任的输入
Vulnerability Title
Lucee 安全漏洞
Vulnerability Description
Lucee是Lucee开源的一个用 Java 编写的高性能开源 CFML 服务器。 Lucee 6.1.1.118之前版本存在安全漏洞,该漏洞源于保护机制失效,可能导致执行代码和访问受保护资源。
CVSS Information
N/A
Vulnerability Type
N/A