2 matches found
Logic flaw vulnerability in the management center of the Jiafa inspection command system
Chengdu Jiafa Antai Education Technology Co., Ltd. is a company whose business scope includes: sales of commercial cryptographic products that have been approved by the State Cryptography Administration and have passed the product quality testing of designated testing organizations valid for...
Chengdu provident arbitrary account password modification vulnerability-vulnerability warning-the black bar safety net
Detailed description: Vulnerability one:modify any account password. csrf vulnerabilities+logic vulnerabilities. On the site, if you need to change the password is required to enter the original password. But not at all, Plus is the get value will cause the vulnerability to... As long as that oth...