Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
admin/options.php in Extreme CMS 0.9, and possibly earlier, does not require authentication, which might allow remote attackers to conduct unauthorized activities. NOTE: this issue can be combined with another vulnerability to expand the scope of a cross-site scripting (XSS) attack without authentication. NOTE: the provenance of this information is unknown; details are obtained from third party sources.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Extreme admin/options.php 权限认证和访问控制漏洞
Vulnerability Description
Extreme CMS中的admin/options.php不要求认证,远程攻击者可能可以执行未授权的活动。
CVSS Information
N/A
Vulnerability Type
N/A