Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Turbo Traffic Trader C (TTT-C) 1.0 allow remote attackers to inject arbitrary HTML or web script, as demonstrated via (1) the link parameter to ttt-out, (2) the X-Forwarded-For header in a GET request to ttt-in, (3) the Referer header in a GET request to ttt-in, or the (4) site name or (5) site URL fields in the main control panel.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TurboTrafficTrader C多个跨站脚本和HTML注入漏洞
Vulnerability Description
Turbo Traffic Trader C (TTT-C) 1.0版本存在多个跨站脚本(XSS)漏洞。远程攻击者可以借助该漏洞注入任意HTML或web脚本。正如通过(1)ttt-out的连接参数,(2)ttt-in GET请求的X-Forwarded-For头,(3)ttt-in GET请求的Referer头或(4)站点名或(5)主控板的站点URL字段。
CVSS Information
N/A
Vulnerability Type
N/A