漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in DFLabs PTK 1.0.0 through 1.0.4 allows remote attackers to inject arbitrary web script or HTML by providing a forensic image containing HTML documents, which are rendered in web browsers during inspection by PTK. NOTE: the vendor states that the product is intended for use in a laboratory with "no contact from / to internet."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Dflabs PTK forensic图像跨站脚本攻击漏洞
Vulnerability Description
DFLabs PTK 1.0.0版本至1.0.4版本中存在跨站脚本攻击漏洞。远程攻击者通过提供一个包含HTML文件的forensic图像,注入任意web脚本或HTML。该图像被PTK检查的时候在web浏览器中被提取。
CVSS Information
N/A
Vulnerability Type
N/A