Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ClusterLabs pcs before version 0.9.157 is vulnerable to a cross-site scripting vulnerability due to improper validation of Node name field when creating new cluster or adding existing cluster.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
ClusterLabs pcs 跨站脚本漏洞
Vulnerability Description
ClusterLabs pcs是一款用于配置Pacemaker的命令行工具。 ClusterLabs pcs 0.9.157之前的版本中存在跨站脚本漏洞,该漏洞源于程序没有正确的校验Node名称字段。攻击者可利用该漏洞运行JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A