Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
GONICUS GOsa version before commit 56070d6289d47ba3f5918885954dcceb75606001 contains a Cross Site Scripting (XSS) vulnerability in change password form (html/password.php, #308) that can result in injection of arbitrary web script or HTML. This attack appear to be exploitable via the victim must open a specially crafted web page. This vulnerability appears to have been fixed in after commit 56070d6289d47ba3f5918885954dcceb75606001.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GONICUS Gosa 跨站脚本漏洞
Vulnerability Description
GONICUS GOsa是一套用于用户管理的LDAP前端管理系统。 GONICUS GOsa commit 56070d6289d47ba3f5918885954dcceb75606001之前版本中的密码更改表单存在跨站脚本漏洞。远程攻击者可借助特制的Web页面利用该漏洞注入任意的Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A