Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in asaanCart 0.9 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO to calc.php, (2) chat.php, (3) register.php, or (4) index.php in libs/smarty_ajax/; or the (5) page parameter to libs/smarty_ajax/index.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
asaanCart 多个跨站脚本漏洞
Vulnerability Description
asaanCart 0.9版本中存在多个跨站脚本(XSS)漏洞。远程攻击者可利用该漏洞通过(1)PATH_INFO传送到calc.php(2)chat.php(3)register.php或(4)libs/smarty_ajax/下的index.php脚本或(5)page参数传送到libs/smarty_ajax/index.php,注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A