Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerability in CiscoSecure ACS 3.0 allows remote attackers to execute arbitrary script or HTML as other web users via the action argument in a link to setup.exe.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Secure ACS跨站脚本执行漏洞
Vulnerability Description
Cisco Secure ACS是一款由CISCO分发和维护的访问控制和计帐系统。 Cisco Secure ACS WEB服务程序对通过用户提交给"action"的参数缺少正确的过滤,远程攻击者可以利用此漏洞进行跨站脚本执行攻击。 Cisco Secure ACS包含WEB组件,其中setup.exe程序对用户提交给"action"参数的数据缺少正确输入验证,攻击者可以提交包含恶意脚本代码的数据给"action"参数,当用户浏览这样的链接时,包含在链接中的恶意代码就会在用户浏览器上执行,导致用户基于Co
CVSS Information
N/A
Vulnerability Type
N/A