Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TCS BaNCS REPORTS_SHOW_FILE.jsp file inclusion
Vulnerability Description
A vulnerability was found in TCS BaNCS 10. It has been classified as problematic. This affects an unknown part of the file /REPORTS/REPORTS_SHOW_FILE.jsp. The manipulation of the argument FilePath leads to file inclusion. The real existence of this vulnerability is still doubted at the moment.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
文件名或路径的外部可控制
Vulnerability Title
TCS BaNCS 安全漏洞
Vulnerability Description
TCS BaNCS(Tata Consultancy Services BaNCS)是TCS公司的一个核心银行软件套件。 TCS BaNCS 10版本存在安全漏洞,该漏洞源于对参数 FilePath 的错误操作会导致文件包含。
CVSS Information
N/A
Vulnerability Type
N/A