Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Pixar's Tractor software, versions 2.2 and earlier, contains a stored cross-site scripting vulnerability
Vulnerability Description
Pixar's Tractor software, versions 2.2 and earlier, contain a stored cross-site scripting vulnerability in the field that allows a user to add a note to an existing node. The stored information is displayed when a user requests information about the node. An attacker could insert Javascript into this note field that is then saved and displayed to the end user. An attacker might include Javascript that could execute on an authenticated user's system that could lead to website redirects, session cookie hijacking, social engineering, etc. As this is stored with the information about the node, all other authenticated users with access to this data are also vulnerable.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Pixars Tractor 跨站脚本漏洞
Vulnerability Description
Pixars Tractor是一套网络渲染解决方案。该产品包括资源共享控制、Python模块扩展等功能。 Pixars Tractor 2.2及之前版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞在用户的系统上注入并执行Javascript代码。
CVSS Information
N/A
Vulnerability Type
N/A