Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
20120630 Novel-Plus CrawlController.java addCrawlSource missing authentication
Vulnerability Description
A vulnerability, which was classified as critical, has been found in 20120630 Novel-Plus up to 0e156c04b4b7ce0563bef6c97af4476fcda8f160. This issue affects the function addCrawlSource of the file novel-crawl/src/main/java/com/java2nb/novel/controller/CrawlController.java. The manipulation leads to missing authentication. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
关键功能的认证机制缺失
Vulnerability Title
Novel-Plus 访问控制错误漏洞
Vulnerability Description
Novel-Plus是Novel-Plus公司的一个在线社交阅读和写作平台。 Novel-Plus存在访问控制错误漏洞,该漏洞源于缺少身份验证。
CVSS Information
N/A
Vulnerability Type
N/A