Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
KL-001-2025-015: Xorux LPAR2RRD Read Only User Log Download Exposing Sensitive Information
Vulnerability Description
An API endpoint that should be limited to web application administrators is hidden from, but accessible by, lower-level read only web application users. The endpoint can be used to download logs from the appliance configuration, exposing sensitive information.
CVSS Information
N/A
Vulnerability Type
特权API的不正确使用
Vulnerability Title
XORUX LPAR2RRD 安全漏洞
Vulnerability Description
XORUX LPAR2RRD是捷克XORUX公司的一个服务器性能监控平台。 XORUX LPAR2RRD存在安全漏洞,该漏洞源于API端点访问控制不当,可能导致敏感信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A