Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
2100 TECHNOLOGY Electronic Official Document Management System - Broken Access Control
Vulnerability Description
The access control in the Electronic Official Document Management System from 2100 TECHNOLOGY is not properly implemented, allowing remote attackers with regular privileges to access the account settings functionality and create an administrator account.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
访问控制不恰当
Vulnerability Title
2100 TECHNOLOGY Electronic Official Document Management System 访问控制错误漏洞
Vulnerability Description
2100 TECHNOLOGY Electronic Official Document Management System是中国二一零零科技(2100 TECHNOLOGY)公司的一个电子办公文档管理系统。 2100 TECHNOLOGY Electronic Official Document Management System 5.0.77之前版本存在访问控制错误漏洞,该漏洞源于访问控制未正确实施,允许具有常规权限的远程攻击者访问帐户设置功能并创建管理员帐户。
CVSS Information
N/A
Vulnerability Type
N/A