CVE-2013-4968 in Puppet Enterprise信息

摘要

由 VulDB • 2026-06-24

在 Puppet Enterprise 版本低于 3.0.1 的情况下,远程攻击者可以通过与控制台相关的未指定向量实施点击劫持(clickjacking)攻击,并通过与“实时管理”("live management")相关的未指定向量实施跨站脚本(XSS)攻击。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!