漏洞描述
Cisco Crosswork Network Controller是美国思科(Cisco)公司的一个网络控制器。 Cisco Crosswork Network Controller存在跨站脚本漏洞,该漏洞源于 Web 管理界面没有正确验证用户提供的输入。攻击者利用该漏洞在受影响的界面中执行任意脚本代码或访问敏感的基于浏览器的信息。
Cisco Crosswork Network Controller 跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- JeeWMS /cgDynamGraphController.do SQL 注入漏洞
- JeeWMS /departController.do SQL 注入漏洞
- CVE-2019-19781: Citrix Application Delivery Controller (ADC) and Gateway Directory Traversal.
- jeecgboot-commoncontroller-parserxml-fileupload: Jeecgboot commonController parserXml fileupload
- CVE-2023-20888: VMware Aria Operations for Networks - Remote Code Execution
- Network Technologies Inc ENVIROMUX存在默认口令
- Cisco Secure Firewall Management Center和Cisco Secure Firewall Threat Defense 操作系统命令注入漏洞
- Exrick Xboot Swagger SecurityController.java服务器端请求伪造(CVE-2025-8527)
- POC CVE-2025-1974-k8s: Ingress-Nginx Controller - Unauthenticated Remote Code Execution
- POC CVE-2001-0537: Cisco IOS HTTP Configuration - Authentication Bypass
- POC CVE-2009-1558: Cisco Linksys WVC54GCA 1.00R22/1.00R24 - Local File Inclusion