Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored Cross-Site Scripting in Wowza Streaming Engine
Vulnerability Description
Stored Cross-Site Scripting in the Manager component of Wowza Streaming Engine below 4.9.1 allows an unauthenticated attacker to inject client-side JavaScript into the web dashboard to automatically hijack admin accounts.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Wowza Media Systems Wowza Streaming Engine 跨站脚本漏洞
Vulnerability Description
Wowza Media Systems Wowza Streaming Engine是美国Wowza Media Systems公司的一个强大的、可定制的和可扩展的媒体服务器软件。用于将高质量视频和音频可靠地流式传输到任何地方的任何设备。 Wowza Media Systems Wowza Streaming Engine 4.9.1版本及之前版本存在跨站脚本漏洞。攻击者利用该漏洞可以将客户端 JavaScript 注入 Web 仪表板以自动劫持管理员帐户。
CVSS Information
N/A
Vulnerability Type
N/A