Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in ToutVirtual VirtualIQ Pro 3.2 build 7882 and 3.5 build 8691 allow remote attackers to hijack the authentication of administrators for requests that (1) create a new user account via a save action to tvserver/user/user.do, (2) shutdown a virtual machine, (3) start a virtual machine, (4) restart a virtual machine, or (5) schedule an activity.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ToutVirtual VirtualIQ 多个跨站请求伪造漏洞
Vulnerability Description
ToutVirtual的 VirtualIQ一项监控管理中大型企业的在线虚拟世界的复合产品系列。 ToutVirtual VirtualIQ存在多个跨站请求伪造(CSRF)漏洞,远程攻击者可通过,劫持管理员对下列请求的认证:(1)在tvserver/user/user.do保存操作中创建新账户,(2)关闭虚拟机,(3)启动虚拟机,(4)重启虚拟机,或(5)制定某activity的活动时间。
CVSS Information
N/A
Vulnerability Type
N/A