漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
On the OSNEXUS QuantaStor v4 virtual appliance before 4.3.1, if the REST call invoked does not exist, an error will be triggered containing the invalid method previously invoked. The response sent to the user isn't sanitized in this case. An attacker can leverage this issue by including arbitrary HTML or JavaScript code as a parameter, aka XSS.
漏洞信息
N/A
漏洞
N/A
漏洞
OSNEXUS QuantaStor v4虚拟设备跨站脚本漏洞
漏洞信息
OSNEXUS QuantaStor v4 virtual appliance是美国OSNEXUS公司的一款虚拟存储设备。 OSNEXUS QuantaStor v4虚拟设备4.3.1之前的版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意的HTML或JavaScript代码。
漏洞信息
N/A
漏洞
N/A