Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. An email address can be modified in between the request for a validation code and the entry of the validation code, leading to storage of an XSS payload contained in the modified address.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sales & Company Management System 跨站脚本漏洞
Vulnerability Description
Sales & Company Management System(SCMS)是一套销售和公司管理系统。该系统包括客户管理、产品管理和税务管理等功能。 SCMS 2018-06-06及之前版本中的member_email.php文件存在跨站脚本漏洞。远程攻击者可通过修改电子邮件地址利用该漏洞注入任意的Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A