Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An XSS issue was discovered in TreasuryXpress 19191105. Due to the lack of filtering and sanitization of user input, malicious JavaScript can be executed by the application's administrator(s). A malicious payload can be injected within the Multi Approval security component and inserted via the Note field. As a result, the payload is executed by the application's administrator(s).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TeasuryXpress 跨站脚本漏洞
Vulnerability Description
TeasuryXpress 19191105版本中存在跨站脚本漏洞,该漏洞程序没有正确处理恶意的JavaScript代码。攻击者可利用该漏洞执行恶意的JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A