Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allow remote attackers to inject arbitrary web script or HTML via the (1) INDEX or (2) IPADDR parameter to private/cindefn.php, (3) the domain parameter to private/power_management_policy_options.php, the slot parameter to (4) private/pm_temp.php or (5) private/power_module.php, (6) the WEBINDEX parameter to private/blade_leds.php, or (7) the SLOT parameter to private/ipmi_bladestatus.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM BladeCenter 固件BPET48L多个跨站脚本攻击漏洞
Vulnerability Description
具有高级管理模块(AMM)固件BPET48L,可能还有4.7之前版本以及5.0版本的IBM BladeCenter存在多个跨站脚本攻击漏洞(XSS)。远程攻击者可以借助(1)INDEX或者(2)private/cindefn.php中IPADDR参数,(3)private/power_management_policy_options.php中domain参数,(4)private/pm_temp.php或者(5)private/power_module.php中的slot参数,(6)private/bl
CVSS Information
N/A
Vulnerability Type
N/A