Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Soar Cloud HR Portal - Insufficient Session Expiration
Vulnerability Description
The notification emails sent by Soar Cloud HR Portal contain a link with a embedded session. The expiration of the session is not properly configured, remaining valid for more than 7 days and can be reused.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
不充分的会话过期机制
Vulnerability Title
Soar Cloud HR Portal 代码问题漏洞
Vulnerability Description
Soar Cloud HR Portal是Soar Cloud公司的一个人力资源应用软件。 Soar Cloud HR Portal 7.3.2024.0409之前版本存在代码问题漏洞,该漏洞源于未正确配置会话有效期。
CVSS Information
N/A
Vulnerability Type
N/A