Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the RSS Feed module in AOL ICQ Toolbar 1.3 for Internet Explorer (toolbaru.dll) allow remote attackers to process arbitrary web script or HTML in the Feeds interface context via the (1) title and (2) description elements within an item element in an RSS feed.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ICQ Toolbar 1.3 for IE 多个跨站脚本攻击漏洞
Vulnerability Description
ICQ Toolbar是一个可安装于IE的工具栏,通过HTML页面提供基于web的配置界面。 ICQ Toolbar没有验证所加载Web页面的位置或来源,因此可以从本地系统或在线配置工具栏。这允许攻击者轻易的拷贝本地保存的options2.html文件的内容并做为html文件上传到任意站点。 每个复选框控件关联到配置设置的方法仅仅是将每个HTML复选框标签的ID属性匹配到期望配置ID的列表。这允许攻击者更改复选框控件的外部表现以掩饰攻击。只要ID属性匹配了相关的配置设置,攻击者就可以向用户浏览器中呈现任意
CVSS Information
N/A
Vulnerability Type
N/A