漏洞描述
Microsoft Azure Stack是美国微软(Microsoft)公司的一款基于Azure云平台的混合云计算软件解决方案。该产品支持构建和部署混合应用程序。 Microsoft Azure Stack存在跨站脚本漏洞。攻击者利用该漏洞执行跨站脚本攻击。
Microsoft Azure Stack 跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- POC azure-custom-admin-role-unrestricted: Azure Subscription Administrator Custom Role Unrestricted Access
- POC azure-custom-owner-role-unrestricted: Azure Custom Owner Role Available
- POC azure-iam-role-resource-lock-unassigned: Azure IAM Role for Resource Locking Not Assigned
- POC azure-entra-id-guest-users-unmonitored: Azure Entra ID Guest Users Unmonitored
- POC azure-mfa-not-enabled-privileged-users: Azure MFA Not Enabled for All Privileged Users
- POC azure-db-mysql-delete-unalerted: Azure MySQL Database Delete Alert Not Configured
- POC azure-delete-lb-alert-unconfigured: Azure Delete Load Balancer Alert Not Configured
- POC azure-key-vault-delete-unalerted: Azure Key Vault Delete Alert Not Configured
- POC azure-keyvault-update-unalerted: Azure Key Vault Update Alert Not Configured
- POC azure-lb-create-update-missing: Azure Load Balancer Create or Update Alert Not Configured
- POC azure-mysql-db-update-unalerted: Azure MySQL Database Create/Update Alert Not Configured
- POC azure-nsg-create-update-unalerted: Azure Network Security Group Create/Update Alert Not Configured
- POC azure-nsg-delete-unalerted: Azure Network Security Group Delete Alert Not Configured