Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Dashboard Editor in Hitachi Vantara Pentaho through 7.x - 8.x contains a reflected Cross-site scripting vulnerability, which allows an authenticated remote users to execute arbitrary JavaScript code. Specifically, the vulnerability lies in the 'type' attribute of 'dashboardXml' parameter. Remediated in >= 7.1.0.25, >= 8.2.0.6, and >= 8.3.0.0 GA.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Hitachi Vantara Pentaho 跨站脚本漏洞
Vulnerability Description
Hitachi Vantara Pentaho是日本Hitachi公司的一款用于大数据环境中对数据进行存储和管理的服务。 Hitachi Vantara Pentaho 版本7.x 至 8.x 的 Dashboard Editor 存在跨站脚本漏洞,该漏洞允许经过身份验证的远程用户执行任意JavaScript代码。以下产品及版本受到影响:Remediated in >= 7.1.0.25, >= 8.2.0.6, and >= 8.3.0.0 GA。
CVSS Information
N/A
Vulnerability Type
N/A