Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in the U2F Origin field of the Datacenter configuration in Proxmox Virtual Environment (PVE) 8.4 allows authenticated users to store malicious input. The payload is rendered unsafely in the Web UI and executed when viewed by other users, potentially leading to session hijacking or other attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Proxmox Virtual Environment 安全漏洞
Vulnerability Description
Proxmox Virtual Environment(Proxmox VE)是Proxmox公司的一个开源的服务器虚拟化环境 Linux 发行版。 Proxmox Virtual Environment 8.4版本存在安全漏洞,该漏洞源于U2F Origin字段存储型跨站脚本漏洞,可能导致会话劫持。
CVSS Information
N/A
Vulnerability Type
N/A