Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in EMC Documentum Webtop before 6.7 SP2 P07, Documentum WDK before 6.7 SP2 P07, Documentum Taskspace before 6.7 SP2 P07, Documentum Records Manager before 6.7 SP2 P07, Documentum Web Publisher before 6.5 SP7, Documentum Digital Asset Manager before 6.5 SP6, Documentum Administrator before 6.7 SP2 P07, and Documentum Capital Projects before 1.8 P01 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter in a URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款EMC Documentum产品跨站脚本漏洞
Vulnerability Description
EMC Documentum是美国易安信(EMC)公司的一套企业级内容管理系统,该系统通过创建、修改、跟踪等功能管理整个信息生命周期,其包括了多个扩展产品,如Documentum Web Publisher(Web内容管理)、Documentum Records Manager(记录管理)等。 多款EMC Documentum产品中存在跨站脚本漏洞,该漏洞源于程序没有正确过滤用户提交的输入。远程攻击者可借助URL中特制的参数利用该漏洞注入任意Web脚本或HTML。以下产品及版本受到影响:EMC Docum
CVSS Information
N/A
Vulnerability Type
N/A