Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
云课网络科技有限公司 Yunke Online School System videobind.html sensitive information in source
Vulnerability Description
A vulnerability was found in 云课网络科技有限公司 Yunke Online School System up to 1.5.5. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/educloud/videobind.html. The manipulation leads to inclusion of sensitive information in source code. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. Upgrading to version 1.5.6 is able to address this issue. It is recommended to upgrade the affected component.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过源代码导致的信息暴露
Vulnerability Title
Yunke Online School System 安全漏洞
Vulnerability Description
Yunke Online School System是中国云课(Yunke)公司的一个在线学校软件。 Yunke Online School System 1.5.5及之前版本存在安全漏洞,该漏洞源于文件/admin/educloud/videobind.html的未知代码会导致源代码中包含敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A