Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in PhotoPost PHP Pro 4.6.x and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ppuser, (2) password, (3) stype, (4) perpage, (5) sort, (6) page, (7) si, or (8) cat parameters to showmembers.php, or the (9) photo name, (10) photo description, (11) album name, or (12) album description fields.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
All Enthusiast Photopost PHP多个输入验证漏洞
Vulnerability Description
PhotoPost PHP Pro 4.6.x以及之前的版本存在多个跨站脚本攻击(XSS)漏洞。远程攻击者借助showmembers.php的(1)ppuser,(2)password,(3)stype,(4)perpage,(5) sort,(6)page,(7) si,或(8)cat参数,或(9) photo name, (10) photo description, (11) album name, or (12) album 描述字段注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A