Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
XSS in all comments fields in M-Files Hubshare
Vulnerability Description
Improper input validation and output encoding in all comments fields, in M-Files Hubshare before 3.3.10.9 allows authenticated attackers to introduce cross-site scripting attacks via specially crafted comments.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L
Vulnerability Type
输入验证不恰当
Vulnerability Title
M-Files Hubshare 跨站脚本漏洞
Vulnerability Description
M-Files Hubshare是M-Files公司的一个协作解决方案。旨在无缝共享文件、文档和协作内容。 M-Files Hubshare 3.3.10.9之前的版本存在安全漏洞,该漏洞源于其所有注释字段的输入验证和输出编码不正确,允许经过身份验证的攻击者通过特别制作的注释实现跨站点脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A