Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WP ULike version 2.8.1, 3.1 contains a Cross Site Scripting (XSS) vulnerability in Settings screen that can result in allows unauthorised users to do almost anything an admin can. This attack appear to be exploitable via Admin must visit logs page. This vulnerability appears to have been fixed in 3.2.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress WP ULike 跨站脚本漏洞
Vulnerability Description
WordPress是WordPress软件基金会的一套使用PHP语言开发的博客平台,该平台支持在PHP和MySQL的服务器上架设个人博客网站。WP ULike是使用在其中的一个网站内容互动插件。 WordPress WP ULike 2.8.1版本和3.1版本中的设置页面存在跨站脚本漏洞。远程攻击者可借助日志页面利用该漏洞执行管理员操作。
CVSS Information
N/A
Vulnerability Type
N/A