Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CSRF in MegaBIP
Vulnerability Description
Websites managed by MegaBIP in versions below 5.15 are vulnerable to Cross-Site Request Forgery (CSRF) as the form available under "/edytor/index.php?id=7,7,0" lacks protection mechanisms. A user could be tricked into visiting a malicious website, which would send POST request to this endpoint. If the victim is a logged in administrator, this could lead to creation of new accounts and granting of administrative permissions.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
MegaBIP 安全漏洞
Vulnerability Description
MegaBIP是MegaBIP公司的一个用于创建BIP网站的软件。 MegaBIP 5.15之前版本存在安全漏洞,该漏洞源于容易受到跨站请求伪造攻击,导致已登录的管理员用户可能被诱导访问恶意网站。
CVSS Information
N/A
Vulnerability Type
N/A