漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Apache Struts before 1.2.9-162.31.1 on SUSE Linux Enterprise (SLE) 11, before 1.2.9-108.2 on SUSE openSUSE 10.3, before 1.2.9-198.2 on SUSE openSUSE 11.0, and before 1.2.9-162.163.2 on SUSE openSUSE 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "insufficient quoting of parameters."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache Struts 未明跨站脚本攻击漏洞
Vulnerability Description
SUSE Linux Enterprise (SLE) 11平台上的Apache Struts 1.2.9-162.31.1之前版本,SUSE openSUSE 10.3平台上的1.2.9-108.2之前版本,SUSE openSUSE 11.0平台上的1.2.9-198.2之前版本以及SUSE openSUSE 11.1平台上的1.2.9-162.163.2之前版本存在跨站脚本攻击漏洞。远程攻击者可以借助与"对参数的不充分引用"相关的未明向量,注入任意的web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A