Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain information from other users via the form fields (1) TITLE, (2) DESCTIT, (3) DESC, (4) searchstring, (5) ALIAS, (6) EMAIL, (7) ADDRESS1, (8) ADDRESS2, (9) ADDRESS3, (10) PHONE1, (11) PHONE2, (12) PHONE3, or (13) PHONE4.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MakeBid Auction Deluxe跨站脚本攻击(XSS)漏洞
Vulnerability Description
MakeBid Auction Deluxe 3.30的auction.pl存在跨站脚本攻击(XSS)漏洞。远程攻击者可以借助一下表单字段获取其他用户的信息(1) TITLE,(2) DESCTIT,(3) DESC,(4) searchstring,(5) ALIAS,(6) EMAIL,(7) ADDRESS1,(8) ADDRESS2,(9) ADDRESS3,(10) PHONE1,(11) PHONE2,(12) PHONE3,或(13) PHONE4。
CVSS Information
N/A
Vulnerability Type
N/A