Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in NetArt Media Car Portal 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) PWRS or (2) Description field when posting a new vehicle; (3) news title when creating news; (4) Name when creating a sub user; (5) group name when creating a group; or (6) dealer name, (7) first name, or (8) last name when changing a profile.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
NetArt Media Car Portal 多个跨站脚本漏洞
Vulnerability Description
NetArt Media Car Portal是一款基于WEB的应用程序。 NetArt Media Car Portal 3.0版本中存在多个跨站脚本漏洞。通过提交新车辆时的(1)PWRS或(2)Description字段;(3)创建新闻时的新闻标题;(4)创建子用户时的名字字段(5)创建群组时的组名字段;或修改用户资料时的(6)经销商名称(7)名字或(8)姓,远程攻击者利用这些漏洞注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A