Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A cross-site-scripting (XSS) vulnerability was discovered in the Vega Charts Kibana integration which could allow arbitrary JavaScript to be executed in a victim’s browser.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Vega 跨站脚本漏洞
Vulnerability Description
Vega是Vega团队的一个基于Javscript可用来创建交互式可视化展示的软件。该软件可使用JSON格式描述数据可视化,并使用HTML5 Canvas或SVG生成交互式视图。 Vega Charts Kibana 存在安全漏洞。攻击者利用该漏洞在易受攻击的浏览器中执行任意 JavaScript。
CVSS Information
N/A
Vulnerability Type
N/A