Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Wallabag application 2.2.3 to 2.3.2 is affected by one cross-site scripting (XSS) vulnerability that is stored within the configuration page. This vulnerability enables the execution of a JavaScript payload each time an administrator visits the configuration page. The vulnerability can be exploited with authentication and used to target administrators and steal their sessions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Wallabag应用程序跨站脚本漏洞
Vulnerability Description
Wallabag application是一款用于保存网页并分类的自助式应用程序。 Wallabag应用程序2.2.3版本至2.3.2版本中的配置页面存在跨站脚本漏洞。远程攻击者可利用该漏洞执行JavaScript代码,窃取管理员会话。
CVSS Information
N/A
Vulnerability Type
N/A