Conduct penetration test on Doris #11540
Unanswered
Quantity-kkk
asked this question in
A - General / Q&A
Replies: 1 comment
-
|
Thanks for your test question, please add my WeChat and let's talk about the situation in detail. My WeChatID number is |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
When I Conduct penetration test on Doris,I found the following problems:
The 8030 port has a sourcemap file disclosure vulnerability. The specific address is [http://127.0.0.1:8030/main.0f5825b620e1b36ce46e.js.map]
The 8060 port has database connection pool unauthorized access vulnerability. The specific address is [http://127.0.0.1:8060/connections]
The 8040 port has device performance monitoring service unauthorized access vulnerability.The The specific address is [http://127.0.0.1:8040/]、[http://127.0.0.1:8040/mem_tracker]
Does anyone know how to fix these vulnerabilities?
渗透测试提示以下端口存在问题,有人有解决思路吗?
Beta Was this translation helpful? Give feedback.
All reactions