Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the web-based message board in Prospero Technologies allows remote attackers to inject arbitrary web script or HTML via a message board post.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Prospero Message Board跨站脚本执行漏洞
Vulnerability Description
Prospero Message Boards是一个基于web的信息系统,提供社区和论坛的功能。 Prospero Message Boards没有过滤JavaScript命令。 如果提交到Prospero论坛的HTML格式的消息包含有JavaScript命令,当其他用户浏览时,脚本的命令将会执行,从而引起一系列的跨站脚本执行攻击。 Prospero使用了cookie来做用户验证,所以这个漏洞可能用来劫取用户帐号。
CVSS Information
N/A
Vulnerability Type
N/A