Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the conferencing component of Mitel ST 14.2, versions GA29 (19.49.9400.0) and earlier, could allow an unauthenticated attacker to conduct a reflected cross-site scripting (XSS) attack due to insufficient validation for the signin.php page. A successful exploit could allow an attacker to execute arbitrary scripts.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mitel ST conferencing组件跨站脚本漏洞
Vulnerability Description
Mitel ST是加拿大Mitel公司的一款视频会议产品。conferencing是其中的一个远程会议组件。 Mitel ST 14.2 GA29 (19.49.9400.0)及之前版本中的conferencing组件存在跨站脚本漏洞,该漏洞源于程序没有充分的校验signin.php页面。远程攻击者可利用该漏洞执行任意脚本。
CVSS Information
N/A
Vulnerability Type
N/A