Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Xerox DocuShare 6 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the default URI under (1) SearchResults/ and (2) Services/ in dsdn/dsweb/, and (3) the default URI under unspecified docushare/dsweb/ServicesLib/Group-#/ directories.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Xerox DocuShare多个跨站脚本漏洞
Vulnerability Description
Xerox DocuShare是美国施乐(Xerox)公司的一套基于Web的文档内容管理解决方案。该方案支持存储任何类型的文档、图像或视频,支持业务流程自动化、支持文档内容共享和协作等。 DocuShare没有正确地过滤对dsdn/dsweb/SearchResults/或dsdn/dsweb/Services/所提供的输入返回给了用户,这允许远程攻击者通过跨站脚本攻击在用户浏览器会话中执行任意HTML和脚本代码。
CVSS Information
N/A
Vulnerability Type
N/A