Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
jack0240 魏 bskms 蓝天幼儿园管理系统 User Creation addUser improper authorization
Vulnerability Description
A vulnerability was found in jack0240 魏 bskms 蓝天幼儿园管理系统 up to dffe6640b5b54d8e29da6f060e0493fea74b3fad. It has been rated as critical. Affected by this issue is some unknown functionality of the file /sa/addUser of the component User Creation Handler. The manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Continious delivery with rolling releases is used by this product. Therefore, no version details of affected nor updated releases are available.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
授权机制不恰当
Vulnerability Title
bskms 安全漏洞
Vulnerability Description
bskms(蓝天幼儿园管理系统)是中国jack0240个人开发者的一个幼儿园管理系统。 bskms存在安全漏洞,该漏洞源于存在授权不当问题。
CVSS Information
N/A
Vulnerability Type
N/A