Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in Sanitization of custom class names used on blocks and layouts. that can result in Execution of JavaScript from an unexpected source.. This attack appear to be exploitable via A user must be directed to an affected page while logged in.. This vulnerability appears to have been fixed in 1.11.1 and later.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Backdrop CMS 跨站脚本漏洞
Vulnerability Description
Backdrop CMS是一套开源的内容管理系统。 Backdrop CMS 1.11.0及之前版本中对自定义类名称的过滤过程存在跨站脚本漏洞。远程攻击者可利用该漏洞执行JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A