Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A log poisoning vulnerability has been discovered in the OneShield Policy (Dragon Core) framework before 5.1.10. Authenticated remote adversaries can poison log files by entering malicious payloads in either headers or form elements. These payloads are then executed via a client side debugging console. This is predicated on the debugging console and Java Bean being made available to the deployed application.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OneShield Policy框架注入漏洞
Vulnerability Description
OneShield Policy(Dragon Core)是美国OneShield公司的一套支持可配置和端到端的策略管理解决方案。 OneShield Policy框架5.1.10之前版本中存在安全漏洞。攻击者可利用该漏洞在系统上执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A