Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In BlueWave Checkmate through 2.0.2 before b387eba, a profile edit request can include a role parameter.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对假设不可变Web参数的外部可控制
Vulnerability Title
Checkmate 安全漏洞
Vulnerability Description
Checkmate是BlueWave开源的一个开源、自托管的工具,旨在通过精美的可视化实时跟踪和监控服务器硬件、正常运行时间、响应时间和事件。 Checkmate 2.0.2及之前版本存在安全漏洞,该漏洞源于角色参数未经验证。
CVSS Information
N/A
Vulnerability Type
N/A