Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in FAQMasterFlexPlus, possibly 1.5 or 1.52, allow remote attackers to inject arbitrary web script or HTML via (1) the cat_name parameter to faq.php; and unspecified parameters to the (2) add categories, (3) edit categories, (4) delete categories, (5) add faq, (6) edit faq, and (7) delete faq Admin scripts.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FAQMasterFlexPlus 'aq.php' 跨站脚本漏洞
Vulnerability Description
FAQMasterFlexPlus,可能是1.5或1.52中的多个跨站脚本漏洞。远程攻击者可以通过以下几种方式来注入任意的Web脚本或HTML:(1)对aq.php的cat-name参数以及未明的参数、(2)增加种类、(3)编辑种类、(4)删除种类、(5)增加faq、(6)编辑 faq、以及(7)删除faq的管理脚本。
CVSS Information
N/A
Vulnerability Type
N/A