漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Nokia NetAct 22 through the Administration of Measurements website section. A malicious user can edit or add the templateName parameter in order to include JavaScript code, which is then stored and executed by a victim's web browser. The most common mechanism for delivering malicious content is to include it as a parameter in a URL that is posted publicly or e-mailed directly to victims. Here, the /aom/html/EditTemplate.jsf and /aom/html/ViewAllTemplatesPage.jsf templateName parameter is used.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nokia NetAct 跨站脚本漏洞
Vulnerability Description
Nokia NetAct是芬兰诺基亚(Nokia)公司的一个网络管理系统。 Nokia NetAct 22版本存在安全漏洞,该漏洞源于允许攻击者编辑或添加templateName参数以包含JavaScript 代码,然后由受害者的Web浏览器存储和执行。
CVSS Information
N/A
Vulnerability Type
N/A