Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in GuppY 4.5.3a and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the pg parameter to printfaq.php, or the (2) Referer or (3) User-Agent HTTP headers, which are not properly handled by error.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GuppY多个跨站脚本漏洞
Vulnerability Description
GuppY是一款来自法国的CMS系统,带有论坛、新闻、留言、下载等众多模块。 GuppY 4.5.3a及以前版本中多个跨站脚本(XXS)漏洞允许远程攻击者通过以下方式注入任意web 脚本:(1)通过pg参数向printfaq.php向注入;(2)通过Referer属性;(3)通过用户代理HTTP请求头,因为error.php没有正确操作。
CVSS Information
N/A
Vulnerability Type
N/A