Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
yangzongzhuan RuoYi Image Source ui layer
Vulnerability Description
A vulnerability classified as problematic was found in yangzongzhuan RuoYi up to 4.8.1. Affected by this vulnerability is an unknown functionality of the component Image Source Handler. The manipulation leads to improper restriction of rendered ui layers. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
不当限制渲染UI层或帧
Vulnerability Title
RuoYi 安全漏洞
Vulnerability Description
RuoYi是中国若依(RuoYi)个人开发者的一款后台管理系统。 RuoYi 4.8.1及之前版本存在安全漏洞,该漏洞源于Image Source Handler组件渲染UI层限制不当。
CVSS Information
N/A
Vulnerability Type
N/A