Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in BluePay Manager 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML during a login action via the (1) Account Name and (2) Username field. NOTE: the vendor has disputed this vulnerability, saying that "it does not exist currently in the Bluepay 2.0 product," and older versions might not have been affected either. As of 20060512, CVE has not formally investigated this dispute
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
BluePay Manager 跨站脚本漏洞
Vulnerability Description
BluePay Manager 2.0 及早期版本中存在跨站脚本漏洞。这使得远程攻击者可以借助于字段(1) Account Name and (2) Username在登陆时注入任意Web脚本或HTML。注:厂商对此漏洞存有争议,称"在Bluepay 2.0中不不存在此漏洞"并且早期版本也可能没有受此影响。截至2006年5月12日,CVE并没有对此争议进行正式调查。
CVSS Information
N/A
Vulnerability Type
N/A