Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in InvoicePlane before 1.5.5. It was observed that the Email address and Web address parameters are vulnerable to Cross Site Scripting, related to application/modules/clients/views/view.php, application/modules/invoices/views/view.php, and application/modules/quotes/views/view.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
InvoicePlane 跨站脚本漏洞
Vulnerability Description
InvoicePlane是一套开源财务系统。该系统具有管理报价、发票和付款等功能。 InvoicePlane 1.5.5之前版本中存在跨站脚本漏洞。远程攻击者可借助‘Email address’和‘Web address’参数利用该漏洞注入任意的Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A