Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Openads 2.0.x before 2.0.10, 2.3 before 2.3.31 (aka Max Media Manager before 0.3.31-alpha-pr2), and phpAdsNew/phpPgAds before 2.0.9-pr1 allows remote attackers to inject arbitrary web script or HTML via (1) the keyword parameter in admin-search.php and (2) affiliate-search.php. NOTE: this issue may overlap CVE-2007-0363.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Openads 'admin-search.php' 跨站脚本攻击漏洞
Vulnerability Description
Openads 2.0.10之前的2.0.x和2.3.31之前的2.3(又称Max Media Manager 0.3.31-alpha-pr2之前版本)和phpAdsNew/phpPgAds 2.0.9-pr1之前版本中存在跨站脚本攻击漏洞。远程攻击者可以借助admin-search.php中的关键词参数和(2)affiliate-search.php,注入任意的web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A