Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2014-9342

EPSS 0.30% · P54
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-9342

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the tree view (pl_tree.php) feature in Application Security Manager (ASM) in F5 BIG-IP 11.3.0 allows remote attackers to inject arbitrary web script or HTML by accessing a crafted URL during automatic policy generation.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
F5 BIG-IP Application Security Manager 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
F5 BIG-IP Application Security Manager(ASM)是美国F5公司的一款BIG-IP应用安全管理器,它能够为用户提供应用交付安全解决方案,以及安全的远程接入、保护电子邮件、简化Web接入控制,同时增强网络和应用性能。 F5 BIG-IP 11.3.0版本的ASM中的tree view (pl_tree.php)功能中存在跨站脚本漏洞。远程攻击者可通过在策略自动生成期间访问特制的URL利用该漏洞注入任意Web脚本或HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2014-9342

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2014-9342

登录查看更多情报信息。

Same Patch Batch · n/a · 2014-12-08 · 34 CVEs total

CVE-2014-3797VMware vCenter Server Appliance 跨站脚本漏洞
CVE-2014-9346Drupal Hierarchical Select模块跨站脚本漏洞
CVE-2014-9347phpMyRecipes‘dosearch.php’SQL注入漏洞
CVE-2014-9348RobotStats ‘formulaireRobot’函数SQL注入漏洞
CVE-2014-9349RobotStats 跨站脚本漏洞
CVE-2014-9350TP-LINK TL-WR740N‘PingIframeRpm.htm’资源管理错误漏洞
CVE-2013-2810多款Emerson Process Management产品安全绕过漏洞
CVE-2014-1693Erlang OTP CRLF注入漏洞
CVE-2014-3616F5 Nginx 代码问题漏洞
CVE-2014-9345Guruperl.net Advertise With Pleasure! Professional SQL注入漏洞
CVE-2014-4631EMC RSA Adaptive Authentication 授权问题漏洞
CVE-2014-4880Hikvision DVR DS-7204 缓冲区溢出漏洞
CVE-2014-8371VMware vCenter Server Appliance 加密问题漏洞
CVE-2014-8600多款KDE产品跨站脚本漏洞
CVE-2014-9217Torch Graylog2 授权问题漏洞
CVE-2014-9218phpMyAdmin Long Password Handling 资源管理错误漏洞
CVE-2014-9219phpMyAdmin 跨站脚本漏洞
CVE-2014-5462OpenEMR SQL注入漏洞
CVE-2014-9344Globiz Solutions Snowfox CMS‘admin/accounts/create’跨站请求伪造漏洞
CVE-2014-9343Globiz Solutions Snowfox CMS‘selectlanguage.class.php’开放重定向漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2014-9342

No comments yet

Leave a comment