Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Firely/Incendi Spark before 1.5.5-r4 lacks Content-Disposition headers in certain situations, which may cause crafted files to be delivered to clients such that they are rendered directly in a victim's web browser.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Firely/Incendi Spark 安全漏洞
Vulnerability Description
Spark是一个应用软件。一个使用C#开发的公共领域FHIR服务器。 Firely/Incendi Spark 1.5.5-r4之前版本存在安全漏洞,该漏洞源于在某些情况下缺乏Content-Disposition头,这可能会导致精心制作的文件被传送到客户端,从而在受害者的web浏览器中直接呈现。
CVSS Information
N/A
Vulnerability Type
N/A