Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CSRF in MegaBIP
Vulnerability Description
During MegaBIP installation process, a user is encouraged to change a default path to administrative portal, as keeping it secret is listed by the author as one of the protection mechanisms. Publicly available source code of "/registered.php" discloses that path, allowing an attacker to attempt further attacks. This issue affects MegaBIP software versions below 5.15
CVSS Information
N/A
Vulnerability Type
文件和路径信息暴露
Vulnerability Title
MegaBIP 安全漏洞
Vulnerability Description
MegaBIP是MegaBIP公司的一个用于创建BIP网站的软件。 MegaBIP 5.15存在安全漏洞,该漏洞源于安装时建议更改的默认管理门户路径在/registered.php源代码中被公开,使得攻击者可利用此信息进行进一步攻击。
CVSS Information
N/A
Vulnerability Type
N/A