Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the topic administration page in the Extension::MobileUI extension before 1.02 for Best Practical Solutions RT 3.8.x and in Best Practical Solutions RT before 4.0.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RT Extension::MobileUI 多个未明跨站脚本漏洞
Vulnerability Description
基于RT的Extension::MobileUI中存在多个跨站脚本漏洞,可被恶意攻击者利用进程跨站脚本攻击。该漏洞源于某些未明输入返回给用户之前未经正确验证。攻击者可利用这些漏洞在受影响站点上下文中的用户浏览器会话中执行任意HTML和脚本代码。运行在RT 3.8.x版本上的Extension::MobileUI 1.02之前版本中存在漏洞。
CVSS Information
N/A
Vulnerability Type
N/A