Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Owl Intranet Knowledgebase 1.10 allow remote authenticated users to inject arbitrary web script or HTML via (1) the Search field to browse.php or (2) the Title field to prefs.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Owl Intranet Knowledgebase 跨站脚本漏洞
Vulnerability Description
Owl Intranet Knowledgebase是美国Owl公司的一套使用PHP语言编写的多用户文档仓库(知识库)、文件管理器和文档管理系统(DMS)。公司、小企业、人群或个人可使用该系统把文件或文档发布到网上。 Owl Intranet Knowledgebase 1.10版本的browse.php脚本和prefs.php脚本中存在跨站脚本漏洞。远程攻击者可借助‘Search’字段或‘Title’字段利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A