Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to steal authentication credentials or to control how the site is rendered to the user. NOTE: the vendor disputes the risk because there is a clear warning next to the button for importing a snapshot
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Netdata Web application 跨站脚本漏洞
Vulnerability Description
Netdata Web application是一款基于Web的主机监控应用程序。 Netdata Web应用程序1.13.0及之前版本中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入并执行恶意的HTML代码,窃取身份验证凭证或控制网站呈现的方式。
CVSS Information
N/A
Vulnerability Type
N/A