Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Free Realty 3.1-0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) notes parameter to (a) admin/agenteditor.php; (2) title, (3) previewdesc, (4) fulldesc, or (5) notes parameter (b) to agentadmin.php or (c) in an addlisting action to agentadmin.php; or unspecified vectors to (d) admin/adminfeatures.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Free Realty 多个跨站脚本漏洞
Vulnerability Description
Free Realty 3.1-0.6版本中存在多个跨站脚本(XSS)漏洞。远程攻击者可利用这些漏洞通过(1)传送到admin/agenteditor.php脚本(2)title(3) previewdesc(4)fulldesc中的notes参数或(5)传送到agentadmin.php脚本中的notes参数或agentadmin.php中的addlisting操作或传送到admin/adminRuby on Rails(Rails)是一个使用Ruby语言写的开源Web应用框架。features是其中的
CVSS Information
N/A
Vulnerability Type
N/A