Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the "View Log Files" function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sun AnswerBook2 多个安全漏洞
Vulnerability Description
1. AnswerBook2的搜索功能动态的生成web页面,这可能允许执行脚本,或向用户提供恶意的HTML。如果用户跟随了链接到AnswerBook2搜索结果的网页,邮件消息或新闻组张贴中不可信任的链接/URI的话,就可能在他们的浏览器中无意中执行远程普通用户编写的脚本。远程攻击者可以通过这些不可信任的链接/URI以访问链接/URI用户的权限执行任意命令。 2. AnswerBook2基于浏览器的管理界面(GUI)中的"浏览日志文件"功能可能受跨站脚本攻击的影响。由于这个漏洞,访问"浏览日志文件"功能的A
CVSS Information
N/A
Vulnerability Type
N/A