Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2 Patch 600 and 8.x before 8.0.0 Patch 100. A reflected cross-site scripting (XSS) vulnerability in admin/cgi-bin/listdir.pl allows authenticated remote administrators to inject arbitrary web script or HTML into an HTTP GET parameter (which reflect the user input without sanitization).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
Veritas Infoscale Operations Manager 跨站脚本漏洞
Vulnerability Description
Veritas Infoscale Operations Manager是美国Veritas公司的一套用于对整个InfoScale部署进行管理的软件。该软件提供多集群管理、定制接口和集中式审计记录等功能。 Veritas InfoScale Operations Manager 7.4.2 Patch 600和8.0.0Patch 100之前版本存在跨站脚本漏洞,该漏洞源于admin/cgi-bin/listdir.pl中对于用户提交的参数缺少过滤和转义。允许经过身份验证的远程管理员将任意web脚本或HT
CVSS Information
N/A
Vulnerability Type
N/A