Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored XSS vulnerability in Ellipse APM
Vulnerability Description
Cross-site Scripting (XSS) vulnerability in the main dashboard of Ellipse APM versions allows an authenticated user or integrated application to inject malicious data into the application that can then be executed in a victim’s browser. This issue affects: Hitachi ABB Power Grids Ellipse APM 5.3 version 5.3.0.1 and prior versions; 5.2 version 5.2.0.3 and prior versions; 5.1 version 5.1.0.6 and prior versions.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
NVMS ABB Ability Ellipse APM 跨站脚本漏洞
Vulnerability Description
NVMS ABB Ability Ellipse APM是泰国NVMS公司的一个应用软件。提供运行状况和性能见解,以防止关键资产故障,同时优化资产生命周期成本。 Ellipse APM versions 5.3.0.1之前版本, 5.2.0.3, and 5.1.0.6 存在跨站脚本漏洞,该漏洞允许经过身份验证的用户或集成的应用程序向应用程序注入恶意数据,然后可以在受害者的浏览器中执行。
CVSS Information
N/A
Vulnerability Type
N/A