Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TSPortal: Anyone can forge self-deletion requests of any user
Vulnerability Description
TSPortal is the WikiTide Foundation’s in-house platform used by the Trust and Safety team to manage reports, investigations, appeals, and transparency work. Prior to version 30, conversion of empty strings to null allows disguising DPA reports as genuine self-deletion reports. This issue has been patched in version 30.
CVSS Information
N/A
Vulnerability Type
未经验证的属主
Vulnerability Title
TSPortal 安全漏洞
Vulnerability Description
TSPortal是Miraheze开源的一个团队管理平台。 TSPortal 30之前版本存在安全漏洞,该漏洞源于空字符串转换为null,可能导致数据保护报告伪装为真实的自删除报告。
CVSS Information
N/A
Vulnerability Type
N/A