Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerability in guestbook.pl for Philip Chinery's Guestbook 1.1 allows remote attackers to execute Javascript or HTML via fields such as (1) Name, (2) EMail, or (3) Homepage.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Philip Chinery's Guestbook跨站脚本执行漏洞
Vulnerability Description
Philip Chinery's Guestbook是一款免费的留言本程序,可以运行在Unix和Linux操作系统下,也可以运行在Microsoft Windows操作系统下。 Philip Chinery's Guestbook对表单字段和URL参数没有很好的过滤用户提交的数据,可导致攻击者进行跨站脚本攻击。 Philip Chinery's Guestbook中"Name"、"EMail" 或者"Homepage"各字段对用户提交数据缺少过滤,攻击者可以在这些字段中插入任意脚本代码,当留言本程序生成页
CVSS Information
N/A
Vulnerability Type
N/A