N/A

** UNVERIFIABLE ** NOTE: this issue does not contain any verifiable or actionable details. Cross-site scripting (XSS) vulnerability in John Frank Asset Manager (AssetMan) 2.4a and earlier allows remote attackers to inject arbitrary web script or HTML via "any of its input." NOTE: the original disclosure is based on vague researcher claims without vendor acknowledgement; therefore this identifier cannot be linked with any future identifier that identifies more specific vectors. Perhaps this should not be included in CVE.

N/A

N/A

John Frank Asset Manage 跨站脚本攻击(XSS)漏洞。

** 无法证实 ** 注: 此问题不包含任何可证实或可控诉的细节。John Frank Asset Manager (AssetMan) 2.4a及之前版本存在跨站脚本攻击(XSS)漏洞。远程攻击者可以借助 "它的任何输入" ，注入任意Web脚本或HTML 。注: 原公布内容基于模糊不清的研究者声明，未经厂商确认；因此，此鉴定无法与将来能确定更具体向量的鉴定发生关联。或许此问题不应纳入CVE。

N/A

N/A