Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to (1) search.php and (2) rss.php; the query string after the image name in (3) photos/photo; the path parameter to (4) folder.php; page parameter and REQUEST_URI to (5) login.php; ver parameter to (6) media.php; theme parameter to (7) modules/iconset/iconset-debug.php; and the REQUEST_URI to (8) index.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Camera Life 多个跨站脚本攻击漏洞
Vulnerability Description
Camera Life是一款基于开放源码的基于PHP开发的图片管理和组织的插件。 Camera Life 2.6.2b8版本中具有多个跨站脚本攻击漏洞。远程攻击者可以借助对(1)search.php和(2)rss.php的q参数;查询字符串后跟(3)photos/photo中的图像名;对(4) folder.php的路径参数;对(5)login.php的页参数和REQUEST_URI;对(6) media.php的ver参数;对(7) modules/iconset/iconset-debug.php的主
CVSS Information
N/A
Vulnerability Type
N/A