Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Joker Board (aka JBoard) 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the notice parameter to editform.php, (2) the edit_user_message parameter to core/edit_user_message.php, or (3) the user_title parameter to inc/head.inc.php, reachable through any PHP script.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Allpublication Joker Board多个跨站脚本攻击漏洞
Vulnerability Description
Joker Board (又称JBoard) 2.0及之前版本中存在多个跨站脚本攻击漏洞。远程攻击者可以提交(1)notice参数到editform.php,(2)编辑用户信息参数到core/edit_user_message.php,或(3)user_title参数到inc/head.inc.php,注入任意的web脚本或HTML。这些参数都可以通过任意的PHP脚本来获取。
CVSS Information
N/A
Vulnerability Type
N/A