Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insecure Direct Object Reference on Deporsite by T-INNOVA
Vulnerability Description
Insecure Direct Object Reference vulnerability in Deporsite from T-INNOVA allows an attacker to retrieve sensitive information from others users via "idUsuario" parameter in "/helper/Familia/obtenerFamiliaUsuario" endpoint.
CVSS Information
N/A
Vulnerability Type
通过用户控制密钥绕过授权机制
Vulnerability Title
T-INNOVA Deporsite 安全漏洞
Vulnerability Description
T-INNOVA Deporsite是T-INNOVA公司的一款应用程序。 T-INNOVA Deporsite存在安全漏洞,该漏洞源于/helper/Familia/obtenerFamiliaUsuario端点中idUsuario参数处理不当,可能导致敏感信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A