Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the aiContactSafe component before 2.0.21 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
aiContactSafe Component for Joomla! 未明跨站脚本漏洞
Vulnerability Description
aiContactSafe是罗马尼亚Algis Info Grup公司针对Joomla!平台开发的一款增强型联系表单组件。 Joomla!的aiContactSafe组件2.0.19和之前的版本中存在未明跨站脚本漏洞,该漏洞源于程序未正确过滤用户提供的输入。当用户浏览被影响的网站时,其浏览器将执行攻击者提供的任意代码,窃取基于cookie的身份认证并发起其他攻击。
CVSS Information
N/A
Vulnerability Type
N/A