Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored Cross-Site Scripting (XSS) vulnerability in Softdial Contact Center
Vulnerability Description
Stored Cross-Site Scripting (XSS) in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to upload XML files to the server with JavaScript code injected via the ‘/softdial/scheduler/save.php’ resource. The injected code will execute when the uploaded file is loaded via the ‘/softdial/scheduler/load.php’ resource and can redirect the victim to malicious sites or steal their login information to spoof their identity.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Sytel Softdial Contact Center(Sytel SCC) 跨站脚本漏洞
Vulnerability Description
Sytel Softdial Contact Center(Sytel SCC)是Sytel公司的一个云联络中心软件。 Sytel Softdial Contact Center(Sytel SCC)存在跨站脚本漏洞,该漏洞源于/softdial/scheduler/save.php资源存储型跨站脚本,可能导致重定向或身份欺骗。
CVSS Information
N/A
Vulnerability Type
N/A