漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AudiStat 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) year and (2) mday parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AudiStat 'index.php'多个跨站脚本攻击漏洞
Vulnerability Description
AudiStat是一个基于PHP+MySQL开发的,轻量级的,占用服务器很少资源的网站流量统计系统。 AudiStat的存在脚本index.php存在多个跨站脚本攻击漏洞。远程攻击者可以借助参数year和mday执行跨站攻击,注入任意的web脚本和HTML。
CVSS Information
N/A
Vulnerability Type
N/A