漏洞描述
敏感信息泄露漏洞是指由于系统或应用程序的安全措施不足,导致敏感信息(如用户数据、系统配置、内部通信等)被未授权的第三方获取。这种漏洞可能由于不当的配置、缺乏访问控制、不安全的数据处理和传输等原因造成。攻击者可能利用泄露的信息进行进一步的攻击,如身份盗窃、欺诈、数据篡改等。
方正畅享全媒体采编系统 cc.do 信息泄露漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2021-20617: Acmailer - Improper Access Control to OS Command Injection
- POC CVE-2022-4940: WCFM Membership <= 2.10.0 - Broken Access Control
- POC CVE-2025-63387: Dify v1.9.1 - Broken Access Control
- POC CVE-2025-8848: LibreChat <= 0.7.9 - HTML Injection via Accept-Language Header
- POC jboss-jmx-console-unauth: JBoss JMX Console - Unauthenticated Access
- 汇文软件书目检索系统 asord_lcc_browse.php SQL注入漏洞
- 金和OA AccountSet.aspx SQL注入漏洞
- ERPNext /api/method/erpnext.accounts.doctype.dunning.dunning.get_dunning_letter_text SQL 注入漏洞(CVE-2025-66434)
- POC nexus-repository-anonymous-access: Nexus Repository Manager - Anonymous Access Enabled
- POC CVE-2019-25213: WordPress Advanced Access Manager - Path Traversal
- POC CVE-2022-33198: WordPress Accordions - Unauthenticated Settings Update
- POC CVE-2023-3277: MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation
- POC CVE-2024-47308: Templately <= 3.1.2 - Broken Access Control