漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
MapSVG MapSVG Lite version 3.2.3 contains a Cross Site Request Forgery (CSRF) vulnerability in REST endpoint /wp-admin/admin-ajax.php?action=mapsvg_save that can result in an attacker can modify post data, including embedding javascript. This attack appears to be exploitable via the victim must be logged in to WordPress as an admin, and click a link. This vulnerability appears to have been fixed in 3.3.0 and later.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MapSVG Lite 跨站请求伪造漏洞
Vulnerability Description
MapSVG Lite是一款使用在WordPress中的地图插件。 MapSVG MapSVG Lite 3.2.3版本中的/wp-admin/admin-ajax.php?action=mapsvg_save URL存在跨站请求伪造漏洞。攻击者可利用该漏洞修改数据,包括嵌入JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A