Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
3DP-MANAGER Uses Hard-coded Credentials
Vulnerability Description
3DP-MANAGER is an inbound generator for 3x-ui. In version 2.0.1 and prior, the application automatically creates an administrative account with known default credentials (admin/admin) upon the first initialization. Attackers with network access to the application's login interface can gain full administrative control, managing VPN tunnels and system settings. This issue will be patched in version 2.0.2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
3DP-MANAGER 信任管理问题漏洞
Vulnerability Description
3DP-MANAGER是DenPiligrim个人开发者的一个代理工具。 3DP-MANAGER 2.0.1及之前版本存在信任管理问题漏洞,该漏洞源于首次初始化时自动创建具有已知默认凭据的管理账户,可能导致攻击者获得完全管理控制权。
CVSS Information
N/A
Vulnerability Type
N/A