Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mautic before 3.2.4 is affected by stored XSS. An attacker with permission to manage companies, an application feature, could attack other users, including administrators. For example, by loading an externally crafted JavaScript file, an attacker could eventually perform actions as the target user. These actions include changing the user passwords, altering user or email addresses, or adding a new administrator to the system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mautic 跨站脚本漏洞
Vulnerability Description
Mautic是一款开源的营销自动化软件。该软件能够监控管理网站、发送电子邮件并管理客户资源。 Mautic before 3.2.4 存在安全漏洞,攻击者可利用该漏洞攻击目标用户执行操作。这些操作包括更改用户密码、更改用户或电子邮件地址,或向系统添加新管理员。
CVSS Information
N/A
Vulnerability Type
N/A