Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in moziloCMS 1.10.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) page and (2) query parameters to (a) index.php, (3) cat and (4) file parameters to (b) download.php, (5) gal parameter to gallery.php, and the (6) URL to admin/login.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
mozilo mozilocms 多个远程文件跨站脚本攻击漏洞
Vulnerability Description
moziloCMS是一款基于PHP的使用文件而无需数据就可以创建和管理的一个网站的简单易用的CMS工具。 moziloCMS 1.10.2及之前版本存在多个跨站脚本攻击漏洞。远程攻击者可以借助对(a)index.php的(1)页参数和(2)query参数、对(b)download.php的(3) cat和(4)文件参数、对gallery.php的(5)画廊参数以及对admin/login.php的(6)URL参数,注入任意的web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A