Zhiyuan Oa A6 Initdataassess Jsp User Sensitive Information Leak
Zhiyuan Oa A6 Initdataassess Jsp User Sensitive Information Leak
Zhiyuan OA A6 initDataAssess.jsp User sensitive information leak
Vulnerability Description
Zhiyuan OA A6 initDataAssess.jsp There is a leak of user sensitive information
You can use the username to blast the user password to enter the background for further attacks
Vulnerability Impact
Zhiyuan OA A6
Network surveying and mapping
Vulnerability reappears
Visit the following URL to reveal user information
https://xxx.xxx.xxx.xxx/yyoa/assess/js/initDataAssess.jsp
This post is licensed under CC BY 4.0 by the author.