Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in framework/common/webcommon/includes/messages.ftl in Apache OFBiz 11.04.01 before 11.04.05 and 12.04.01 before 12.04.04 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, which are not properly handled in a (1) result or (2) error message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apache OFBiz 跨站脚本漏洞
Vulnerability Description
Apache OFBiz(又名Apache Open For Business Project)是美国阿帕奇(Apache)软件基金会的一套企业资源计划(ERP)系统。该系统提供了一整套基于Java的Web应用程序组件和工具。 Apache OFBiz 11.04.05版本之前11.04.01版本和12.04.04版本之前12.04.01版本的framework/common/webcommon/includes/messages.ftl文件中存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意Web脚本或H
CVSS Information
N/A
Vulnerability Type
N/A