漏洞标题
数据 basiler 的远程代码执行
漏洞描述信息
Databasir中的远程代码执行
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Remote Code Execution in Databasir
漏洞描述信息
Databasir is a team-oriented relational database model document management platform. Databasir 1.01 has remote code execution vulnerability. JDBC drivers are not validated prior to use and may be provided by users of the system. This can lead to code execution by any basic user who has access to the system. Users are advised to upgrade. There are no known workarounds to this issue.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
漏洞类别
输入验证不恰当
漏洞标题
Databasir 输入验证错误漏洞
漏洞描述信息
Databasir是一个面向团队的关系型数据库模型文档管理平台。 Databasir 1.01存在安全漏洞,该漏洞源于 JDBC 驱动程序在使用前未经验证导致任何有权访问系统的基本用户执行代码。
CVSS信息
N/A
漏洞类别
输入验证错误