Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Papoo Light 3.6 before 20070611 allow remote attackers to inject arbitrary web script or HTML via (1) the URI in a GET request or (2) the Title field of a visitor comment, and (3) allow remote authenticated users to inject arbitrary web script or HTML via a message to another user. NOTE: vector (2) might overlap CVE-2006-3571.1.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Papoo Light 多个HTML注入漏洞
Vulnerability Description
Papoo Light中存在多个跨站脚本攻击漏洞。远程攻击者可以借助GET请求中的URI或访客评论的标题字段,注入任意的web脚本或HTML。远程认证用户可以借助一个对其他用户的信息,注入任意的web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A