Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in PHPlist 2.10.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) listname parameter in (a) admin/editlist.php, (2) title parameter in (b) admin/spageedit.php, (3) title field in (c) admin/template.php, (4) filter, (5) delete, and (6) start parameters in (d) admin/eventlog.php, (7) id parameter in (e) admin/configure.php, (8) find parameter in (f) admin/users.php, (9) start parameter in (g) admin/admin.php, and (10) action parameter in (h) admin/fckphplist.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHPList多个跨站脚本漏洞
Vulnerability Description
PHPlist是一个开源newsletter管理器,易于与任何网站相集成。 PHPlist 2.10.1及更早版本中的多个跨站脚本攻击(XSS)漏洞,可让远程攻击者通过以下方式注入任意Web脚本或HTML:(1)(a) admin/editlist.php中的listname参数,(2)(b) admin/spageedit.php中的title参数,(3)(c) admin/template.php中的title字段,(d) admin/eventlog.php中的(4)filter、(5) delet
CVSS Information
N/A
Vulnerability Type
N/A