Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in WebCoreModule.ashx in RADactive I-Load before 2008.2.5.0 allow remote attackers to inject arbitrary web script or HTML via parameters with names beginning with __ (underscore underscore) sequences, which are incompatible with an XSS protection mechanism provided by Microsoft ASP.NET.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
radactive i-load 跨站脚本攻击漏洞
Vulnerability Description
RADactive I-Load之前的版本2008.2.5.0版本的WebCoreModule.ashx中存在多个跨站脚本攻击漏洞。远程攻击者借助以__序列为起始的参数名的参数,且该参数与一个由Microsoft ASP.NET提供的XSS保护机制无法兼容,以注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A