Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in index.cgi for Bandmin 1.4 allows remote attackers to insert arbitrary HTML or script via (1) the year parameter in a showmonth action, (2) the month parameter in a showmonth action, or (3) the host parameter in a showhost action.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bandmin跨站脚本攻击(XSS)漏洞
Vulnerability Description
Bandmin 1.4的index.cgi存在跨站脚本攻击(XSS)漏洞。远程攻击者可以借助(1)showmonth操作中的year参数,(2)showmonth操作中的month参数,或(3)showhost操作中的host参数注入任意HTML或脚本。
CVSS Information
N/A
Vulnerability Type
N/A