Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
WeBid version up to current version 1.2.2 contains a Cross Site Scripting (XSS) vulnerability in user_login.php, register.php that can result in Javascript execution in the user's browser, injection of malicious markup into the page. This attack appear to be exploitable via The victim user must click a malicous link. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WeBid 跨站脚本漏洞
Vulnerability Description
WeBid是一套开源的拍卖网站建站解决方案。 WeBid 1.2.2及之前版本中的user_login.php和register.php文件存在跨站脚本漏洞。远程攻击者可借助恶意链接利用该漏洞在用户的浏览器中执行Javascript代码。
CVSS Information
N/A
Vulnerability Type
N/A