Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored XSS Vulnerability in M-Files Classic Web
Vulnerability Description
Stored XSS Vulnerability in M-Files Classic Web versions before 23.10 and LTS Service Release Versions before 23.2 LTS SR4 and 23.8 LTS SR1allows attacker to execute script on users browser via stored HTML document.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
M-Files 跨站脚本漏洞
Vulnerability Description
M-Files是M-Files公司的一个创新的元数据驱动的文档管理平台。 M-Files Classic Web 23.10 之前、M-Files LTS Service Release23.2 LTS SR4 和 23.8 LTS SR1 之前版本存在跨站脚本漏洞,该漏洞源于允许攻击者通过存储的 HTML 文档在用户浏览器上执行脚本。
CVSS Information
N/A
Vulnerability Type
N/A