Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in AdaptCMS 3.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) data[Category][title] parameter to admin/categories/add, (2) data[Field][title] parameter to admin/fields/ajax_fields/, (3) name property in a basicInfo JSON object to admin/tools/create_theme, (4) data[Link][link_title] parameter to admin/links/links/add, or (5) data[ForumTopic][subject] parameter to forums/off-topic/new.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AdaptCMS 跨站脚本漏洞
Vulnerability Description
AdaptCMS是一套开源的内容管理系统(CMS)。该系统具有可扩展、易于使用、且可以和其他系统无缝连接等特点。 AdaptCMS 3.0.3版本中存在跨站脚本漏洞,该漏洞源于admin/categories/add URI没有充分过滤‘data[Category][title]’参数;admin/fields/ajax_fields/ URI没有充分过滤‘data[Field][title]’参数;admin/tools/create_theme URI没有充分过滤basicInfo JSON对象中的‘
CVSS Information
N/A
Vulnerability Type
N/A