Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OPT/NET BV NG-NetMS version v3.6-2 and earlier versions contains a Cross Site Scripting (XSS) vulnerability in /js/libs/jstree/demo/filebrowser/index.php page. The "id" and "operation" GET parameters can be used to inject arbitrary JavaScript which is returned in the page's response that can result in Cross-site scripting.This attack appear to be exploitable via network connectivity.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OPT/NET BV OPTOSS Next Gen Network Management System 跨站脚本漏洞
Vulnerability Description
OPT/NET BV OPTOSS Next Gen Network Management System(NG-NetMS)是一套下一代网络管理系统。该系统提供基于Web的端到端管理功能。 OPT/NET BV OPTOSS Next Gen Network Management System (NG-NetMS) 3.6-2及之前版本中/js/libs/jstree/demo/filebrowser/index.php页面存在跨站脚本漏洞。远程攻击者可借助POST参数‘id’和‘operation’利用
CVSS Information
N/A
Vulnerability Type
N/A