Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a Webconfig Users user-attribute field, as demonstrated by the (1) First Name or (2) Last Name field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM Lotus Foundations Start 跨站脚本漏洞
Vulnerability Description
IBM Lotus Foundations Start是一款内部部署的软件设备和完整的解决方案。 IBM Lotus Foundations Start早期版本至1.2.2c版本中存在多个跨站脚本漏洞,该漏洞源于没有正确验证用户提供的输入。攻击者利用该漏洞在受影响浏览器上下文中运行恶意的HTML和脚本代码,潜在的允许攻击者窃取基于cookie认证证书或控制站点呈现给用户的方式,也可能存在其他攻击。
CVSS Information
N/A
Vulnerability Type
N/A