漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Press has a potential 2FA bypass
Vulnerability Description
Press, a Frappe custom app that runs Frappe Cloud, manages infrastructure, subscription, marketplace, and software-as-a-service (SaaS). Users can circumvent 2FA login for users due to a lack of server side validation for the same. This vulnerability is fixed in commit ddb439f8eb1816010f2ef653a908648b71f9bba8.
CVSS Information
N/A
Vulnerability Type
认证机制不恰当
Vulnerability Title
Frappe Technologies Frappe 授权问题漏洞
Vulnerability Description
Frappe Technologies Frappe是印度Frappe Technologies公司的一个基于Python、Mariadb的并集成前端页面的Web开发框架。 Frappe Technologies Frappe存在授权问题漏洞,该漏洞源于缺少服务器端验证,可能导致绕过双因素认证。
CVSS Information
N/A
Vulnerability Type
N/A