漏洞标题
Boston Sleep slice Layout 跨站点脚本
漏洞描述信息
波士顿睡眠切片布局跨站脚本
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
Boston Sleep slice Layout cross site scripting
漏洞描述信息
A vulnerability, which was classified as problematic, was found in Boston Sleep slice up to 84.1.x. Affected is an unknown function of the component Layout Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 84.2.0 is able to address this issue. The name of the patch is 6523bb17d889e2ab13d767f38afefdb37083f1d0. It is recommended to upgrade the affected component. VDB-216174 is the identifier assigned to this vulnerability.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
漏洞类别
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
漏洞标题
Boston Sleep Slice 跨站脚本漏洞
漏洞描述信息
Slice是Boston Sleep开源的一个临床研究界面。旨在通过为设计数据字典和收集表单提供强大的框架来收集稳健和一致的数据。 Boston Sleep Slice 84.2.0版本及之前版本存在跨站脚本漏洞。攻击者利用该漏洞执行跨站脚本攻击。
CVSS信息
N/A
漏洞类别
跨站脚本