漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
An XSS issue was discovered in CremeCRM 1.6.12. It is affected by 10 stored Cross-Site Scripting (XSS) vulnerabilities in the firstname, lastname, billing_address-address, billing_address-zipcode, billing_address-city, billing_address-department, shipping_address-address, shipping_address-zipcode, shipping_address-city, and shipping_address-department parameters in the contact creation and modification page. The payload is stored within the application database and allows the execution of JavaScript code each time a client visit an infected page.
漏洞信息
N/A
漏洞
N/A
漏洞
CremeCRM 跨站脚本漏洞
漏洞信息
CremeCRM是一套客户关系管理系统。该系统具有销售自动化、客户服务和收发电子邮件等功能。 CremeCRM 1.6.12版本中的contact creation and modification页面存在跨站脚本漏洞。远程攻击者可借助多个参数利用该漏洞在客户端访问受影响页面时执行JavaScript代码。(多个参数包括:‘firstname’,‘lastname’,‘billing_address-address’,‘billing_address-zipcode’,‘billing_address-c
漏洞信息
N/A
漏洞
N/A