Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP GET request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM WebSphere Edge Server Caching Proxy跨站脚本执行漏洞
Vulnerability Description
IBM WebSphere Edge Server Caching Proxy是WEB服务器缓存代理系统。 缓冲代理服务器对用户提交的请求缺少正确过滤,远程攻击者可以利用这个漏洞构建恶意WEB页,诱使用户点击,进行跨站脚本执行攻击。 缓冲代理服务器对用户提交的路径请求过滤不正确,攻击者可以通过构建包含任意HTML和脚本代码的链接,诱使目标用户点击链接,就可以导致攻击者提供的脚本代码在客户端浏览器上执行,可窃取基于Cookie认证的信息,也可能获得本地文件内容。
CVSS Information
N/A
Vulnerability Type
N/A