Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
FreeScripts VisitorBook LE (visitorbook.pl) does not properly escape line breaks in input, which allows remote attackers to (1) use VisitorBook as an open mail relay, when $mailuser is 1, via extra headers in the email field, or (2) cause the guestbook database to be deleted via a large number of line breaks that exceeds the $max_posts variable.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeScripts VisitorBook LE (visitorbook.pl)漏洞
Vulnerability Description
FreeScripts VisitorBook LE (visitorbook.pl)不能正确逃避输入中的换行符,远程攻击者(1)当$mailuser是1的时候,可以使用VisitorBook作为开放邮件中继,(2)可以通过超过$max_posts变量的大量换行符导致留言簿数据库被删除。
CVSS Information
N/A
Vulnerability Type
N/A