Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Novell NetWare Enterprise Web Server 5.1 and 6.0 allows remote attackers to process arbitrary script or HTML as other users via (1) a malformed request for a Perl program with script in the filename, (2) the User.id parameter to the webacc servlet, (3) the GWAP.version parameter to webacc, or (4) a URL request for a .bas file with script in the filename.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell NetWare Enterprise Web服务器跨站脚本(XSS)漏洞
Vulnerability Description
Novell NetWare Enterprise Web服务器5.1和6.0版本存在跨站脚本(XSS)漏洞。远程攻击者可以借助(1)带有文件名脚本的Perl程序的畸形请求,(2)webacc servlet的User.id参数,(3)webacc的GWAP.version参数或(4)带有文件名脚本的URL请求与其他用户一样处理任意脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A