Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Cross-Site Scripting (XSS) vulnerability exists in the web-based configuration interface of Zucchetti Axess access control devices, including XA4, X3/X3BIO, X4, X7, and XIO / i-door / i-door+. The vulnerability is caused by improper sanitization of user-supplied input in the dirBrowse parameter of the /file_manager.cgi endpoint.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zucchetti Axess 安全漏洞
Vulnerability Description
Zucchetti Axess是意大利Zucchetti公司的一系列人员进出管理系统。 Zucchetti Axess存在安全漏洞,该漏洞源于Web配置接口中对file_manager.cgi端点dirBrowse参数的用户输入清理不当,可能导致跨站脚本攻击。以下产品受到影响:XA4、X3/X3BIO、X4、X7和XIO / i-door / i-door+。
CVSS Information
N/A
Vulnerability Type
N/A