Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the hook_cntrlr_error_output function in modules/page/hooks/listeners.php in the admincp component in TangoCMS 2.2.x (aka Eagle) before 2.2.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some of these details are obtained from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TangoCMS 'modules/page/hooks/listeners.php' 跨站脚本攻击漏洞
Vulnerability Description
TangoCMS是一个免费和开放源码(基于GNU / GPL 2.1)用PHP编写的内容管理系统(CMS)。它的易用性和强大的功能,让您快速,轻松地创建和管理整个网站。 TangoCMS 2.2.x(又称Eagle)2.2.4之前的版本的admincp组件的modules/page/hooks/listeners.php中的hook_cntrlr_error_output函数存在跨站脚本攻击漏洞。远程攻击者可以借助未明向量,注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A