Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sq_remote_page_url parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MySource Matrix 跨站脚本攻击漏洞
Vulnerability Description
MySource Matrix 3.8和更早版本以及MySource 2.x版本,可让远程攻击者通过sq_remote_page_url参数将应用程序用作HTTP代理服务器,以该服务器的IP地址访问任意站点并执行跨站脚本攻击(XSS)。
CVSS Information
N/A
Vulnerability Type
N/A