Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
NUUO Network Video Recorder NVRsolo 3.9.1 is affected by a Cross Site Scripting (XSS) vulnerability. An attacker can steal the user's session by injecting malicious JavaScript codes which leads to session hijacking.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NUUO Network Video Recorder 跨站脚本漏洞
Vulnerability Description
NUUO Network Video Recorder(NVR)是中国台湾NUUO公司的一款网络视频记录器。 NUUO Network Video Recorder NVRsolo 3.9.1版本存在跨站脚本漏洞,该漏洞源于软件针对用户提交的请求参数缺少有效的过滤和转义。攻击者可利用该漏洞可以通过注入恶意JavaScript代码来窃取用户的会话,从而导致会话劫持。
CVSS Information
N/A
Vulnerability Type
N/A