Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SURFnet OpenConext EngineBlock version 5.7.0 to 5.7.3 contains a Cross Site Scripting (XSS) vulnerability that can result in Allows an attacker to inject arbitrary web scripts or HTML into help and login pages. This attack appear to be exploitable via the victim opening a specially crafted URL.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SURFnet OpenConext EngineBlock 跨站脚本漏洞
Vulnerability Description
SURFnet OpenConext EngineBlock是一款OpenConext SAML网关。 SURFnet OpenConext EngineBlock 5.7.0版本至5.7.3版本中存在跨站脚本漏洞。远程攻击者可借助特制的URL利用该漏洞向帮助和登录页面中注入任意的Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A