Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Incomplete blacklist vulnerability in PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to conduct cross-site scripting (XSS) attacks via a crafted string, as demonstrated by bypassing a protection mechanism that removes only the "alert" string.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PaperThin CommonSpot 不完整黑名单漏洞
Vulnerability Description
PaperThin CommonSpot是美国PaperThin公司的一套专用于Web内容管理、Web体验管理和品牌管理等的数字营销网站内容管理系统。该系统支持即时发布内容、简化内容管理和搜索引擎优化等。 PaperThin CommonSpot 7.0.1及之前的版本和8.0.0至8.0.2版本存在不完整黑名单漏洞。远程攻击者可借助特制的字符串利用该漏洞实施跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A