漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the theme_adium_append_message function in empathy-theme-adium.c in the Adium theme in libempathy-gtk in Empathy 3.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted alias (aka nickname) in a /me event, a different vulnerability than CVE-2011-3635.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Empathy ‘theme_adium_append_message’函数跨站脚本攻击漏洞
Vulnerability Description
Empathy 3.2.1及之前版本的libempathy-gtk的Adium主题的empathy-theme-adium.c的theme_adium_append_message函数中存在跨站脚本攻击漏洞。远程攻击者可借助/me事件中特制的别名(也成为昵称)注入任意web脚本或者HTML。
CVSS Information
N/A
Vulnerability Type
N/A