关于 CVE-2015-0513 的漏洞信息

1. 漏洞描述
From NVD
Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in EMC M&R (aka Watch4Net) before 6.5u1 and ViPR SRM before 3.6.1 allow remote authenticated users to inject arbitrary web script or HTML by leveraging privileged access to set crafted values of unspecified fields.
From 神龙GPT (AIGC)
EMC M&R(aka Watch4Net)在6.5u1之前和ViPR SRM在3.6.1之前版本的 administrative user interface 中的多个跨站点脚本(XSS)漏洞,允许远程授权用户通过利用特权访问来设置未指定字段的构造值,从而 inject arbitrary web script 或 HTML。
2. 漏洞评分(CVSS)
From NVD
NVD 暂无评分
From 神龙GPT (AIGC)
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
3. 漏洞类别
From NVD
NVD 暂无漏洞类别信息
From 神龙GPT (AIGC)
神龙GPT 暂无漏洞类别信息(请耐心等待)
Reference