Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrative accounts via screens/aaa/mgmtuser_create.html or (2) insert XSS sequences via the headline parameter to screens/base/web_auth_custom.html, aka Bug ID CSCud50283.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Wireless LAN Controller 跨站请求伪造漏洞
Vulnerability Description
Cisco Wireless LAN Controller(WLC)是美国思科(Cisco)公司的一款无线局域网控制器产品。该产品在无线局域网中提供安全策略、入侵检测等功能。 Cisco Wireless LAN Controller (WLC)设备软件7.2.110.0版本中存在多个跨站请求伪造漏洞。通过诱使管理员(1)由screens/aaa/mgmtuser_create.html页面添加管理员账户或(2)通过headline参数传送到screens/base/web_auth_custom.htm
CVSS Information
N/A
Vulnerability Type
N/A