Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An Authentication Bypass vulnerability in Smanga 3.2.7 allows an unauthenticated attacker to reset the password of any user (including the administrator) and fully takeover the account by manipulating POST parameters. The issue stems from insecure permission validation in check-power.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Smanga 安全漏洞
Vulnerability Description
Smanga是lkw199711个人开发者的一个 docker 直装的漫画流媒体阅读工具。 Smanga 3.2.7版本存在安全漏洞,该漏洞源于check-power.php中的权限验证不安全,可能导致未经验证的攻击者通过操纵POST参数重置任意用户密码并接管账户。
CVSS Information
N/A
Vulnerability Type
N/A