Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
JBoss BPM Suite 6 is vulnerable to a reflected XSS via dashbuilder. Remote attackers can entice authenticated users that have privileges to access dashbuilder (usually admins) to click on links to /dashbuilder/Controller containing malicious scripts. Successful exploitation would allow execution of script code within the context of the affected user.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Red Hat JBoss BPM Suite 跨站脚本漏洞
Vulnerability Description
Red Hat JBoss BPM Suite是美国红帽(Red Hat)公司的一套集合了JBoss BRMS所有功能的业务流程管理平台。该平台可为建模、自动化、模拟化和业务流程监控提供额外支持。 JBoss BPM Suite 6中存在跨站脚本漏洞。远程攻击者可通过诱使用户访问dashbuilder并点击指向/dashbuilder/Controller(包含有恶意脚本)的链接利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A