Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Anyquery Unauthenticated Access Vulnerability Exposes Private Integration Data
Vulnerability Description
Anyquery is an SQL query engine built on top of SQLite. Versions 0.4.3 and below allow attackers who have already gained access to localhost, even with low privileges, to use the http server through the port unauthenticated, and access private integration data like emails, without any warning of a foreign login from the provider. This issue is fixed in version 0.4.4.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Anyquery 授权问题漏洞
Vulnerability Description
Anyquery是Julien C个人开发者的一个数据库工具。 Anyquery 0.4.3及之前版本存在授权问题漏洞,该漏洞源于未经验证的HTTP服务器访问,可能导致私人集成数据泄露。
CVSS Information
N/A
Vulnerability Type
N/A