Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Nokia NetAct 22 through the Site Configuration Tool website section. A malicious user can change a filename of an uploaded file to include JavaScript code, which is then stored and executed by a victim's web browser. The most common mechanism for delivering malicious content is to include it as a parameter in a URL that is posted publicly or e-mailed directly to victims. Here, the /netact/sct filename parameter is used.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nokia NetAct 跨站脚本漏洞
Vulnerability Description
Nokia NetAct是芬兰诺基亚(Nokia)公司的一个网络管理系统。 Nokia NetAct 22版本存在安全漏洞,该漏洞源于允许攻击者更改上传文件的文件名以包含JavaScript代码,然后由受害者的Web浏览器存储和执行。
CVSS Information
N/A
Vulnerability Type
N/A