Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NPort 5100A Series Store XSS Vulnerability
Vulnerability Description
The NPort 5100A Series firmware version v1.6 and prior versions are affected by web server XSS vulnerability. The vulnerability is caused by not correctly neutralizing user-controllable input before placing it in output. Malicious users may use the vulnerability to get sensitive information and escalate privileges.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
MOXA NPort 5100A 安全漏洞
Vulnerability Description
MOXA NPort 5100A是中国摩莎(MOXA)公司的一个通用设备联网服务器。 MOXA NPort 5100A v1.6及之前固件版本存在安全漏洞,该漏洞源于在将用户可控输入放入输出之前未正确中和用户控制输入,攻击者利用该漏洞可以获取敏感信息并提升权限。
CVSS Information
N/A
Vulnerability Type
N/A