Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerabilities in iCon administrative web server for Critical Path inJoin Directory Server 4.0 allow remote attackers to execute script as the administrator via administrator URLs with modified (1) LOCID or (2) OC parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Critical Path InJoin Directory Server跨站脚本执行漏洞
Vulnerability Description
Critical Path提供一款支持LDAP (Lightweight Directory Access Protocol)的目录服务器InJoin,InJoin Directory Server可使用在Microsoft Windows和Unix操作系统下,iCon提供InJoin Directory Server WEB管理接口功能。 iCon对用户提供给URL参数的数据缺少正确充分的检查,可导致远程攻击者进行跨站脚本执行攻击。 合法用户名和密码可以通过连接iCon监听的1500端口,远程管理目录服
CVSS Information
N/A
Vulnerability Type
N/A