Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Your_Account module in PHP-Nuke 7.8 might allows remote attackers to inject arbitrary HTML and web script via the ublock parameter, which is saved in the user's personal menu. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. In addition, it is unclear whether this issue is a vulnerability, since it is related to the user's personal menu, which presumably is not modifiable by others.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP-Nuke Your_Account模块 跨站脚本攻击漏洞
Vulnerability Description
PHP-Nuke 7.8中的Your_Account模块存在跨站脚本攻击漏洞。这使得远程攻击者可能借助于保存在用户个人菜单中的ublock参数注入任意HTML或web脚本。
CVSS Information
N/A
Vulnerability Type
N/A