|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-06-04 | |
| Rule Name: | Dbappsecurity WAF Arbitrary User Login Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Dbappsecurity WAF is a professional application security protection product independently developed by Hangzhou Dbappsecurity Co., Ltd., focusing on providing security protection for web business systems such as websites and APPs. The report.php file of Dbappsecurity WAF has a hard-coded Console user login, and the attacker can directly log in to the background through the vulnerability. | |
| Impact: | An attacker could exploit this vulnerability to have unspecified effect. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |