Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the Readdle Documents app before 6.9.7 for iOS. The application's file-transfer web server improperly displays directory names, leading to Stored XSS, which may be used to steal a user's data. This requires user interaction because there is no known direct way for an attacker to create a crafted directory name on a victim's device. However, a crafted directory name can occur if a victim extracts a ZIP archive that was provided by an attacker.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Readdle Documents app 跨站脚本漏洞
Vulnerability Description
Readdle Documents app是乌克兰Readdle公司的一款文件管理器。该产品支持查看EPUB电子书、查看Word和Excel文档等。 基于iOS系统的Readdle Documents app 6.9.7之前版本中存在安全漏洞,该漏洞源于文件传输Web服务器没有正确显示目录名称。攻击者可借助特制目录名称利用该漏洞获取用户数据。
CVSS Information
N/A
Vulnerability Type
N/A