Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Incorrect access control in Sage DPW 2024_12_004 and earlier allows unauthorized attackers to access the built-in Database Monitor via a crafted request. The vendor has stated that the issue is fixed in 2025_06_000, released in June 2025.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Sage DPW 安全漏洞
Vulnerability Description
Sage DPW是英国Sage公司的一个人力资源系统。 Sage DPW v2024.12.003版本存在安全漏洞,该漏洞源于访问控制不当,可能导致未经授权的访问内置数据库监视器。
CVSS Information
N/A
Vulnerability Type
N/A