Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Carlo Gavazzi SmartHouse Webapp 6.5.33 Cross-Site Request Forgery and XSS
Vulnerability Description
SmartHouse Webapp 6.5.33 contains multiple cross-site request forgery and cross-site scripting vulnerabilities that allow attackers to perform unauthorized actions. Attackers can exploit these vulnerabilities by tricking logged-in users into visiting malicious websites or injecting malicious scripts into various application parameters.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Carlo Gavazzi SmartHouse Webapp 安全漏洞
Vulnerability Description
Carlo Gavazzi SmartHouse Webapp是美国Carlo Gavazzi公司的一个远程管理智能家居设备的软件平台。 Carlo Gavazzi SmartHouse Webapp 6.5.33版本存在安全漏洞,该漏洞源于存在多个跨站请求伪造和跨站脚本漏洞,可能导致执行未经授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A