Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Observium Professional, Enterprise & Community 20.8.10631. It is vulnerable to Cross-Site Scripting (XSS) due to the fact that it is possible to inject and store malicious JavaScript code within it. This can occur via la_id to the /syslog_rules URI for delete_syslog_rule, because of syslog_rules.inc.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Observium Professional Enterprise Community 跨站脚本漏洞
Vulnerability Description
Observium是英国observium的一个免费的服务器监控平台。该平台由PHP编写的基于自动发现 SNMP 的网络监控平台,支持非常广泛的网络硬件和操作系统,包括 Cisco、Windows、Linux、HP、NetApp 等等。 Observium Professional, Enterprise & Community 20.8.10631 中存在安全漏洞,该漏洞源于有可能注入并存储恶意JavaScript代码,该漏洞允许攻击者进行跨站点脚本(XSS)的攻击。
CVSS Information
N/A
Vulnerability Type
N/A