漏洞描述
思科统一运作管理器(CUOM)8.6之前的版本的通用服务设备中心下CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine中存在跨站脚本(XSS)漏洞,该漏洞允许远程攻击者通过参数注入任意Web脚本或HTML。
Cisco Common Services Devices Center 跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-61757: Oracle Identity Manager REST WebServices - Authentication Bypass
- 璐华HRM /ajaxpro/RuvarHRM.Web.Common.get_account_by_tree.RuvarHRM.Web.Common.ashx SQL 注入漏洞
- POC Ruvar HRM RuvarHRM.Web.Common.ashx SQL注入漏洞
- Omnissa Workspace ONE UEM /DevicesGateway/apps/system-app-metadata 目录遍历漏洞(CVE-2025-25231)
- 华天软件InforCenter PLM uploadFileHttp 任意文件上传漏洞
- POC 用友NC IMsgCenterWebService 命令执行漏洞
- CVE-2019-6340: Drupal 8 core RESTful Web Services RCE
- 理正企业综合管理系统 /ajax/LeadingMIS.CommonModel.CommonExpand.Common.AjaxExpand.LeadingMIS.CommonModel.CommonExpand.Common.ashx SQL 注入漏洞
- Cisco Secure Firewall Management Center和Cisco Secure Firewall Threat Defense 操作系统命令注入漏洞
- POC CVE-2001-0537: Cisco IOS HTTP Configuration - Authentication Bypass
- POC CVE-2009-1558: Cisco Linksys WVC54GCA 1.00R22/1.00R24 - Local File Inclusion
- POC CVE-2011-3315: Cisco CUCM, UCCX, and Unified IP-IVR- Directory Traversal
- POC CVE-2013-5528: Cisco Unified Communications Manager 7/8/9 - Directory Traversal