Описание
An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx.
An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-47076
- https://cvewalkthrough.com/smart-office-suite-cve-2022-47076-cve-2022-47075
- https://cvewalkthrough.com/smart-office-suite-unauthenticated-data-ex
- https://youtu.be/D42upepxzwM
- http://packetstormsecurity.com/files/173093/Smart-Office-Web-20.28-Information-Disclosure-Insecure-Direct-Object-Reference.html
Связанные уязвимости
CVSS3: 7.5
nvd
почти 3 года назад
An issue was discovered in Smart Office Web 20.28 and earlier allows attackers to view sensitive information via DisplayParallelLogData.aspx.