admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-06 02:31:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/CVE-2023-25814.md
之乎者也 289598cea6
Create CVE-2023-25814.md
2023-04-13 15:47:43 +08:00

1.0 KiB
Raw Blame History

MeterSphere File Read Vulnerability(CVE-2023-25814)

  Vulnerability MeterSphere File Read Vulnerability(CVE-2023-25814)
 Chinese name MeterSphere 文件读取漏洞CVE-2023-25814
CVSS core 7.5
FOFA Query (click to view the results directly) app="FIT2CLOUD-MeterSphere"
Number of assets affected 2552
Description MeterSphere is a one-stop open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing and performance testing, and is fully compatible with mainstream open source standards such as JMeter and Selenium. MeterSphere has an unauthorized arbitrary file read vulnerability.
Impact Attackers can use this vulnerability to read the leaked source code, database configuration files, etc., resulting in an extremely insecure website.