Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Accela Automation Platform 22.2.3.0.230103 contains multiple vulnerabilities in the Test Script feature. An authenticated administrative user can execute arbitrary Java code on the server, resulting in remote code execution. In addition, improper input validation allows for arbitrary file write and server-side request forgery (SSRF), enabling interaction with internal or external systems. Successful exploitation can lead to full server compromise, unauthorized access to sensitive data, and further network exploitation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Accela Automation Platform 安全漏洞
Vulnerability Description
Accela Automation Platform是加拿大Accela公司的一个自动化平台。 Accela Automation Platform 22.2.3.0.230103版本存在安全漏洞,该漏洞源于Test Script功能存在多个问题,包括可执行任意Java代码、输入验证不当,可能导致远程代码执行、任意文件写入和服务端请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A