Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in global-protect/login.esp in Palo Alto Networks Global Protect Portal, Global Protect Gateway, and SSL VPN portals 3.1.x through 3.1.11 and 4.0.x through 4.0.5 allows remote attackers to inject arbitrary web script or HTML via the inputStr parameter in a Login action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Palo Alto Networks Global 多款产品跨站脚本漏洞
Vulnerability Description
Palo Alto Networks Global Protect Portal、Global Protect Gateway、SSL VPN portals 3.1.x版本至3.1.11版本和4.0.x版本至4.0.5版本中的global-protect/login.esp中存在跨站脚本(XSS)漏洞。远程攻击者可利用该漏洞通过Login操作中的inputStr参数注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A