Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 allows connections to TCP port 1812 from arbitrary source IP addresses, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via UTF-7 text to the 404 error page of a Project Woodstock service on this port.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Websense Web Security/Web Filter 配置错误漏洞
Vulnerability Description
Websense是业界领先的Web安全和网页过滤解决方案。 Websense Web Security 7.0版本和Web Filter 7.0版本中的Websense Manager中的Apache Tomcat中的默认配置中存在漏洞,该漏洞源于允许从任意源IP地址连接到TCP 1812端口。更易于远程攻击者借助Project Woodstock service在这个端口中的UTF-7 文本的404错误页面进行跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A