Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Formstone <=1.4.16 is vulnerable to a Reflected Cross-Site Scripting (XSS) vulnerability caused by improper validation of user supplied input in the upload-target.php and upload-chunked.php files. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the hosting Web site once the URL is clicked or visited. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials, force malware execution, user redirection and others.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Formstone 跨站脚本漏洞
Vulnerability Description
Formstone是Formstone团队的一个前端组件代码库。 Formstone <=1.4.16 存在安全漏洞,攻击者可利用该漏洞窃取受害者基于cookie的身份验证凭证、强制执行恶意软件、用户重定向等。
CVSS Information
N/A
Vulnerability Type
N/A