Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In CyberArk Endpoint Privilege Manager (formerly Viewfinity) 10.2.1.603, there is persistent XSS via an account name on the create token screen, the VfManager.asmx SelectAccounts->DisplayName screen, a user's groups in ConfigurationPage, the Dialog Title field, and App Group Name in the Application Group Wizard.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CyberArk Endpoint Privilege Manager 跨站脚本漏洞
Vulnerability Description
CyberArk Endpoint Privilege Manager(前称Viewfinity)是CyberArk Software公司的一款权限管理软件。该软件包括权限管理、应用程序控制和凭证丢失保护等功能。 CyberArk Endpoint Privilege Manager 10.2.1.603版本中存在跨站脚本漏洞。远程攻击者可借助多种方法利用该漏洞注入任意的Web脚本或HTML。(多种方法包括:令牌创建页面上的账户名称、VfManager.asmx SelectAccounts->Displ
CVSS Information
N/A
Vulnerability Type
N/A