漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
It was discovered that the Dashbuilder login page as used in Red Hat JBoss BPM Suite before 6.4.2 and Red Hat JBoss Data Virtualization & Services before 6.4.3 could be opened in an IFRAME, which made it possible to intercept and manipulate requests. An attacker could use this flaw to trick a user into performing arbitrary actions in the Console (clickjacking).
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Red Hat Dashbuilder 安全漏洞
Vulnerability Description
Red Hat Dashbuilder是美国红帽(Red Hat)公司的一套开源的用于建立业务仪表板和报告的平台。该平台支持在线创建和编辑KPI(绩效指标)、集成jBPM的(业务流程管理)平台等。 Red Hat Dashbuilder中存在点击劫持漏洞。攻击者可利用该漏洞控制受影响应用程序或获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A