Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in ToutVirtual VirtualIQ Pro 3.5 build 8691 allow remote attackers to inject arbitrary web script or HTML via the (1) addNewDept, (2) deptId, or (3) deptDesc parameter to tvserver/server/user/addDepartment.jsp; or the (4) firstName, (5) lastName, or (6) email parameter in a save action to tvserver/user/user.do. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ToutVirtual VirtualIQ Pro多个跨站脚本攻击漏洞
Vulnerability Description
ToutVirtual的 VirtualIQ一项监控管理中大型企业的在线虚拟世界的复合产品系列。 ToutVirtual VirtualIQ Pro存在多个跨站脚本攻击(XSS)漏洞,远程攻击者可通过tvserver/server/user/addDepartment.jsp的(1) addNewDept、 (2) deptId 或(3) deptDesc参数,或者tvserver/user/user.do保存操作的(4) firstName、 (5) lastName 或(6) email参数注入任意w
CVSS Information
N/A
Vulnerability Type
N/A