CVE-2012-5956 in AssetExplorer信息

摘要

由 VulDB • 2026-07-06

ManageEngine AssetExplorer 5.6(service pack 5614之前版本)中存在多个跨站脚本(XSS)漏洞,远程攻击者可通过XML资产数据中的字段向discoveryServlet/WsDiscoveryServlet注入任意Web脚本或HTML,如DocRoot/Computer_Information/output元素所示。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Do you know our Splunk app?

Download it now for free!