Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sofico Miles RIA 2020.2 Build 127964T is affected by Stored Cross Site Scripting (XSS). An attacker with access to a user account of the RIA IT or the Fleet role can create a crafted work order in the damage reports section (or change existing work orders). The XSS payload is in the work order number.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sofico Miles Ria跨站脚本漏洞
Vulnerability Description
Sofico Miles Ria是比利时Sofico公司的一个汽车租赁管理软件。 Sofico Miles RIA 2020.2 build 127964T 版本存在安全漏洞,攻击者可以在damase报告部分创建一个恶意的工作订单,或者使用恶意的Tavaseript更改现有的工作订单。
CVSS Information
N/A
Vulnerability Type
N/A