漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
Elefant CMS Title Persistent cross site scriting
漏洞信息
A vulnerability, which was classified as problematic, has been found in Elefant CMS 1.3.12-RC. Affected by this issue is some unknown functionality of the component Title Handler. The manipulation with the input </title><img src=no onerror=alert(1)> leads to basic cross site scripting (Persistent). The attack may be launched remotely. Upgrading to version 1.3.13 is able to address this issue. It is recommended to upgrade the affected component.
漏洞信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
漏洞
Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)
漏洞
Elefant CMS 跨站脚本漏洞
漏洞信息
Elefant CMS是加拿大John de Plume个人开发者的一个简单 PHP 内容管理系统和 Web 框架。 Elefant CMS 1.3.12-RC 版本存在跨站脚本漏洞,远程攻击者利用该漏洞可执行基本的跨站点脚本(持久)攻击。
漏洞信息
N/A
漏洞
N/A