Thinfinity 漏洞列表
共找到 5 个与 Thinfinity 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2021-44848: Thinfinity VirtualUI User Enumeration POC
Thinfinity VirtualUI (before v3.0), /changePassword returns different responses for requests depending on whether the username exists. It may enumerate OS users (Administrator, Guest, etc.) -
CVE-2021-45092: Thinfinity Iframe Injection POC
A vulnerability exists in Thinfinity VirtualUI in a function located in /lab.html reachable which by default could allow IFRAME injection via the "vpath" parameter. -
CVE-2021-44848: Thinfinity VirtualUI User Enumeration POC
Thinfinity VirtualUI (before v3.0), /changePassword returns different responses for requests depending on whether the username exists. It may enumerate OS users (Administrator, Guest, etc.) -
CVE-2021-45092: Thinfinity Iframe Injection POC
A vulnerability exists in Thinfinity VirtualUI in a function located in /lab.html reachable which by default could allow IFRAME injection via the "vpath" parameter. -
Thinfinity用户名枚举(CVE-2021-44848) 无POC
Thinfinity是一个windows虚拟界面系统,在 3.0 之前的 Cibele Thinfinity VirtualUI中,/changePassword 根据用户名是否存在,对无效的身份验证请求返回不同的响应。