漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Adobe Connect | Cross-site Scripting (DOM-based XSS) (CWE-79)
Vulnerability Description
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a DOM-based Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this issue by manipulating the DOM environment to execute malicious JavaScript within the context of the victim's browser. Exploitation of this issue requires user interaction in that a victim must visit a crafted webpage. Scope is changed.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Adobe Connect 跨站脚本漏洞
Vulnerability Description
Adobe Connect是美国奥多比(Adobe)公司的一个用于创建会议环境的软件。 Adobe Connect 2025.3版本和12.10及之前版本存在跨站脚本漏洞,该漏洞源于容易受到基于DOM的跨站脚本攻击,可能导致在受害者浏览器环境中执行恶意JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A