Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Santesoft Sante PACS Server Cross-site Scripting
Vulnerability Description
Sante PACS Server web portal is vulnerable to stored cross-site scripting. An attacker could inject malicious HTML codes redirecting a user to a malicious webpage and stealing the user's cookie.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Santesoft Sante PACS Server 跨站脚本漏洞
Vulnerability Description
Santesoft Sante PACS Server是塞浦路斯Santesoft公司的一个符合 DICOM 3.0 的PACS 服务器、Modality Worklist 服务器、 用于 DICOM 文件的 HTTP(Web)服务器以及 CD/DVD 刻录和打印服务器。用于存储、存档、管理、查看和刻录医学图像。 Santesoft Sante PACS Server存在跨站脚本漏洞,该漏洞源于存储型跨站脚本漏洞,可能导致重定向和窃取用户cookie。
CVSS Information
N/A
Vulnerability Type
N/A