漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
WP Customer Reviews < 3.4.3 - Multiple Unauthenticated and Low Priv Authenticated Stored XSS
Vulnerability Description
Unvalidated input and lack of output encoding in the WP Customer Reviews WordPress plugin, versions before 3.4.3, lead to multiple Stored Cross-Site Scripting vulnerabilities allowing remote attackers to inject arbitrary JavaScript code or HTML.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Wordpress WP Customer Reviews 跨站脚本漏洞
Vulnerability Description
Wordpress WP Customer Reviews是 (Wordpress)开源的一个应用插件。提供一个设置特定页面,以接收有关业务,服务的客户推荐,或撰写有关产品的评论功能。 WordPress WP Customer Reviews plugin before 3.4.3 存在跨站脚本漏洞,该漏洞源于未验证的输入和缺少输出编码,导致多个跨站脚本漏洞。
CVSS Information
N/A
Vulnerability Type
N/A