Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability has been identified in Polarion ALM (All versions < V21 R2 P2), Polarion WebClient for SVN (All versions). A cross-site scripting is present due to improper neutralization of data sent to the web page through the SVN WebClient in the affected product. An attacker could exploit this to execute arbitrary code and extract sensitive information by sending a specially crafted link to users with administrator privileges.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Siemens Polarion Subversion Webclient 跨站脚本漏洞
Vulnerability Description
Siemens Polarion Subversion Webclient是德国西门子(Siemens)公司的一个 Subversion 的 ALM 解决方案的客户端。用于让您的 Subversion 用户选择浏览您的 Subversion 存储库并执行基本的 SVN 操作。 Polarion Subversion Webclient (V21 R1)存在跨站脚本漏洞,该漏洞源于通过SVN WebClient发送到web页面的数据处理不当,导致跨站点脚本问题。攻击者利用该漏洞执行任意代码,并通过向具有管理
CVSS Information
N/A
Vulnerability Type
N/A