漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Cross-site Scripting (XSS)
Vulnerability Description
Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the main functionality. It accepts input that can result in the output (an anchor a tag) containing undesirable Javascript code that can be executed upon user interaction.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
AnchorMe 跨站脚本漏洞
Vulnerability Description
AnchorMe是一款可以手工记录当前页面阅读位置的扩展。 AnchorMe 存在跨站脚本漏洞,目前尚无此漏洞的相关信息,请随时关注CNNVD或安全公告。
CVSS Information
N/A
Vulnerability Type
N/A