Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP (formerly Aladdin HASP SRM) run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies (7T) IGSS 7 and other products, when Firefox 2.0 is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors that trigger write access to a configuration file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SafeNet Sentinel HASP/ 7T IGSS HTML注入漏洞
Vulnerability Description
SafeNet Sentinel HASP和7T IGSS中存在HTML注入漏洞,该漏洞源于对用户提供的输入未经正确过滤。攻击者提供的HTML和脚本代码可以在受影响站点的上下文中执行,可能允许攻击者盗取基于cookie的认证证书或者控制网站传达给用户的方式,也可能执行其他的攻击。Sentinel HASP SDK 5.11之前的版本和Sentinel HASP Run-time 6.x7 Technologies (7T) IGSS 7之前的版本中存在该漏洞。
CVSS Information
N/A
Vulnerability Type
N/A