漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server
Vulnerability Description
Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18. An authenticated user could cause another user to perform unwanted actions within the application they are logged into. This vulnerability is possible due to the lack of proper CSRF token implementation. Among other things, it is possible, using a POST request to delete all commands via '/delete_all_commands?sid='.
CVSS Information
N/A
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Flexense Sync Breeze Enterprise Server和Flexense Disk Pulse Enterprise 跨站请求伪造漏洞
Vulnerability Description
Flexense Sync Breeze Enterprise Server和Flexense Disk Pulse Enterprise都是Flexense公司的产品。Flexense Sync Breeze Enterprise Server是一个网络文件同步软件。Flexense Disk Pulse Enterprise是一个实时文件系统监控软件。 Sync Breeze Enterprise Server 10.4.18版本和Disk Pulse Enterprise 10.4.18版本存在跨站
CVSS Information
N/A
Vulnerability Type
N/A