Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerability (XSS) in (1) admin_index.php, (2) admin_pass.php, (3) admin_modif.php, and (4) admin_suppr.php in MyGuestbook 3.0 allows remote attackers to execute arbitrary PHP code by modifying the location parameter to reference a URL on a remote web server that contains file.php via script injected into the pseudo, email, and message parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MyGuestbook跨站脚本漏洞
Vulnerability Description
MyGuestbook 3.0版本的(1)admin_index.php,(2)admin_pass.php,(3)admin_modif.php,和(4)admin_suppr.php存在跨站脚本漏洞(XSS)。远程攻击者借助注入pseudo,email,和message参数的脚本修改location参数引用远程web服务器上包含file.php的URL来执行任意PHP代码。
CVSS Information
N/A
Vulnerability Type
N/A