Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in GreenSQL allow remote attackers to inject arbitrary web script or HTML via several vectors, as demonstrated by the (1) uname and (2) pass parameters in a login form, and (3) an unspecified "url value," leading to storage of XSS sequences in the database and display of these sequences in the alert section of the admin panel.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GreenSQL Web Management Tool 多个HTML注入漏洞
Vulnerability Description
GreenSQL存在多个跨站脚本攻击漏洞,远程攻击者可以借助几个向量注入任意web脚本或HTML,例如(1) uname和(2)登录表格的pass参数,以及(3)一个未明"url值",导致跨站脚本序列存储在数据库和在管理面板显示这些序列进行提醒。
CVSS Information
N/A
Vulnerability Type
N/A