Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored Cross Site Scripting (XSS) in VIDEOJET multi 4000
Vulnerability Description
Incomplete filtering of JavaScript code in different configuration fields of the web based interface of the VIDEOJET multi 4000 allows an attacker with administrative credentials to store JavaScript code which will be executed for all administrators accessing the same configuration option.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Bosch VIDEOJET multi 4000 跨站脚本漏洞
Vulnerability Description
Bosch VIDEOJET multi 4000是德国博世(Bosch)公司的一款 16 通道 CCTV 视频编码器。可为安全摄像头系统提供一流的 IP 视频性能。 Bosch VIDEOJET multi 4000版本存在安全漏洞,该漏洞源于对基于Web界面中不同配置字段的JavaScript代码过滤不完整,允许具有管理凭据的攻击者存储JavaScript代码,所有访问相同配置选项的管理员都将执行这些代码。
CVSS Information
N/A
Vulnerability Type
N/A