Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote attackers to inject arbitrary web script or HTML via the command XML element in the req parameter to flexdata.action in (1) common/, (2) monitor/, or (3) psnpm/ or the (4) module XML element in the req parameter to flexdata.action in monitor/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Huawei SEQ Analyst 跨站脚本漏洞
Vulnerability Description
Huawei SEQ Analyst是中国华为(Huawei)公司的一套业务质量监测和管理单个用户和多个供应商之间关系的平台。该平台提供服务调试、用户投诉处理、故障排除、用户体验管理和增值服务的部署等功能。 Huawei SEQ Analyst V200R002C03LG0001CP0022之前版本中存在跨站脚本漏洞,该漏洞源于common/、monitor/和psnpm/ URI中的flexdata.action文件没有充分过滤‘req’参数中的‘command XML’元素;monitor/ URI中
CVSS Information
N/A
Vulnerability Type
N/A