Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
XSS vulnerability in Pilz PASvisu and PMI v8xx
Vulnerability Description
A stored cross-site scripting vulnerability in the Runtime component of Pilz PASvisu before 1.14.1 and PMI v8xx up to and including 2.0.33992 allows a low-privileged remote unauthenticated attacker to manipulate process data with potential impact on integrity and/or availability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Pilz PASvisu 跨站脚本漏洞
Vulnerability Description
Pilz pasvisu是德国Pilz公司的一款人机界面可视化软件。 Pilz PASvisu 1.14.1之前版本和PMI v8xx 2.0.33992及之前版本存在跨站脚本漏洞,该漏洞源于Runtime组件中存在存储型跨站脚本漏洞,可能导致低权限的远程未认证攻击者操纵过程数据,对完整性和/或可用性造成潜在影响。
CVSS Information
N/A
Vulnerability Type
N/A