漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Improper Input Validation in Foreseer Reporting Software (FRS)
Vulnerability Description
The user input was not sanitized on Reporting Hierarchy Management page of Foreseer Reporting Software (FRS) application which could lead into execution of arbitrary JavaScript in a browser context for all the interacting users. This security issue has been patched in the latest version 1.5.100 of the FRS.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Eaton Foreseer Reporting Software 安全漏洞
Vulnerability Description
Eaton Foreseer Reporting Software是美国伊顿(Eaton)公司的一款用于电力监控系统(EPMS)的报告生成工具,能够实时采集电力数据并生成分析报告,帮助企业优化能源管理和设备性能。 Eaton Foreseer Reporting Software存在安全漏洞,该漏洞源于报告层次管理页面未清理用户输入,可能导致任意JavaScript执行。
CVSS Information
N/A
Vulnerability Type
N/A