Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability
Vulnerability Description
Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the auth-request.php file. The issue results from the lack of proper validation of a user-supplied path prior to using it in authentications. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-28912.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
Unraid 路径遍历漏洞
Vulnerability Description
Unraid是Unraid公司的一套主要用于个人和小型企业的操作系统。 Unraid存在路径遍历漏洞,该漏洞源于auth-request.php文件缺乏对用户提供路径的验证,可能导致路径遍历和身份验证绕过。
CVSS Information
N/A
Vulnerability Type
N/A