Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
User Enumeration vulnerability in TCMAN GIM
Vulnerability Description
User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This vulnerability allows an unauthenticated attacker to determine whether a user exists on the system. The vulnerability is exploitable through the 'pda:username' parameter with 'soapaction GetLastDatePasswordChange' in '/WS/PDAWebService.asmx'.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
TCMAN GIM 信息泄露漏洞
Vulnerability Description
TCMAN GIM是西班牙TCMAN公司的一款管理系统。 TCMAN GIM v11 20250304版本存在信息泄露漏洞,该漏洞源于未经验证的攻击者可通过pda:username参数确定用户是否存在。
CVSS Information
N/A
Vulnerability Type
N/A