Green Alliance Bas Log Data Security Analysis System Accountmanage Unauthorized Access Vulnerability
Green Alliance Bas Log Data Security Analysis System Accountmanage Unauthorized Access Vulnerability
Green Alliance BAS log data security analysis system accountmanage Unauthorized access vulnerability
Vulnerability Description
Green Alliance BAS log data security analysis system has an unauthorized access vulnerability. Through the vulnerability, you can add any account to log in to the platform to obtain sensitive information.
Vulnerability Impact
Green Alliance BAS log data security analysis system
Network surveying and mapping
body=”WebApi/encrypt/js-sha1/build/sha1.min.js”
Vulnerability reappears
Login page
Unauthorized page
/accountmanage/index
Add a user and log in
Log in to the backend with an account
This post is licensed under CC BY 4.0 by the author.