漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
Multiple cross-site scripting (XSS) vulnerabilities in forum/include/error/autherror.cfm in FuseTalk Basic, Standard, Enterprise, and ColdFusion allow remote attackers to inject arbitrary web script or HTML via the (1) FTVAR_LINKP and (2) FTVAR_URLP parameters to (a) forum/include/error/autherror.cfm, and the (3) FTVAR_SCRIPTRUN parameter to (b) forum/include/common/comfinish.cfm and (c) blog/include/common/comfinish.cfm.
漏洞信息
N/A
漏洞
N/A
漏洞
FuseTalk ComFinish.CFM 多个跨站脚本攻击漏洞
漏洞信息
FuseTalk ComFinish.CFM 中存在多个跨站脚本攻击漏洞。远程攻击者可以借助提交到(a)forum/include/error/autherror.cfm的(1)FTVAR_LINKP和(2)FTVAR_URLP参数以及到(b)forum/include/common/comfinish.cfm和(c)blog/include/common/comfinish.cfm的(3)FTVAR_SCRIPTRUN参数,注入任意的web脚本或HTML。
漏洞信息
N/A
漏洞
N/A