CNNVD-202511-494 Information
Nov 06, 2025
cve
CNNVD ID
CNNVD-202511-494
Related CVE
- CNNVD Published: 2025-11-06
Description (Chinese)
Heimdall Data Database Proxy是美国Heimdall Data公司的一款智能数据库代理。 Heimdall Data Database Proxy存在跨站脚本漏洞,该漏洞源于数据库事件日志处理中缺少对用户提供数据的验证,可能导致任意脚本注入和远程代码执行。
Description (English)
Heimdall Data Data Price is an intelligent database agent for Heimdall Data in the United States. Heimdall Data Data Price has a cross-site script loophole, which stems from the lack of validation of data provided by users in the database event log processing, which may lead to any script injection and remote code execution.
Hazard Level
Medium
Vulnerability Type
跨站脚本
Affected Vendor
Heimdall Data
Published
2025-11-06
Last Modified
2026-02-24
References
https://www.zerodayinitiative.com/advisories/ZDI-25-980/
Patch
https://www.heimdalldata.com/release-notes/
Share on: