Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the import functionality in HP ArcSight Connector appliance 6.2.0.6244.0 and ArcSight Logger appliance 5.2.0.6288.0 allows remote attackers to inject arbitrary web script or HTML via a crafted file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
HP Arcsight 多个产品跨站脚本漏洞
Vulnerability Description
HP Arcsight是惠普旗下的安全软件和合规性管理解决方案公司。 HP Arcsight多个产品中的导出功能中存在跨站脚本漏洞,该漏洞源于对用户提供的输入未经充分验证。攻击者可利用该漏洞在受影响网站上下文中不知情受害者的浏览器中执行任意脚本代码,窃取基于cookie的认证证书或控制网站传达给用户的方式,也可能存在其他攻击。以下产品中存在漏洞:Arcsight Connector Appliance 6.2.0.6244.0版本和Arcsight Logger Appliance 5.2.0.6288.
CVSS Information
N/A
Vulnerability Type
N/A