漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Symantec Web Isolation (WI) 1.11 prior to 1.11.21 is susceptible to a reflected cross-site scripting (XSS) vulnerability. A remote attacker can target end users protected by WI with social engineering attacks using crafted URLs for legitimate web sites. A successful attack allows injecting malicious JavaScript code into the website's rendered copy running inside the end user's web browser. It does not allow injecting code into the real (isolated) copy of the website running on the WI Threat Isolation Engine.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Web Isolation 跨站脚本漏洞
Vulnerability Description
Symantec Web Isolation是美国赛门铁克(Symantec)公司的一款Web安全防护软件。该软件主要用于防止恶意软件和网络钓鱼攻击等。 Symantec Web Isolation 1.11.21之前的1.11版本中存在跨站脚本漏洞。远程攻击者可借助特制的URLs实施社会工程攻击利用该漏洞在用户的Web浏览器中执行任意脚本。
CVSS Information
N/A
Vulnerability Type
N/A