Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Tenable Appliance 3.5 - 4.4.0, and possibly prior versions, contains a flaw in the simpleupload.py script in the Web UI. Through the manipulation of the tns_appliance_session_user parameter, a remote attacker can inject arbitrary commands.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Tenable Network Security Tenable Appliance 安全漏洞
Vulnerability Description
Tenable Network Security Tenable Appliance是美国Tenable Network Security公司的一款浏览器管理应用程序,它能够承载包括Nessus在内的各种Tenable应用程序。 Tenable Network Security Tenable Appliance 3.5版本至4.4.0版本中的Web UI的simpleupload.py脚本存在安全漏洞。远程攻击者可借助‘tns_appliance_session_user’参数利用该漏洞注入任意命令。
CVSS Information
N/A
Vulnerability Type
N/A