Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in EditeurScripts EsContacts 1.0 allow remote authenticated users to inject arbitrary web script or HTML via the msg parameter to (1) login.php, (2) importer.php, (3) add_groupe.php, (4) contacts.php, (5) groupes.php, and (6) search.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EsContacts 'msg'参数 多个跨站脚本攻击漏洞
Vulnerability Description
EditeurScripts EsContacts 1.0中存在的跨站脚本攻击漏洞会。远程验证用户通过对(1) login.php, (2) importer.php, (3) add_groupe.php, (4) contacts.php, (5) groupes.php, 以及 (6) search.php的msg参数来注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A