漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Adobe Connect CSV injection via export feature could lead to code execution
Vulnerability Description
Adobe Connect version 11.0.7 (and earlier) is affected by an Input Validation vulnerability in the export feature. An attacker could exploit this vulnerability by injecting a payload into an online event form and achieve code execution if the victim exports and opens the data on their local machine.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
Adobe Connect 输入验证错误漏洞
Vulnerability Description
Adobe Connect是美国奥多比(Adobe)公司的一个用于创建会议环境的软件。 Adobe Creative Cloud Desktop Application 存在输入验证错误漏洞,攻击者可以利用此漏洞窃取受害者基于cookie的身份验证凭据。
CVSS Information
N/A
Vulnerability Type
N/A