Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Wyomind Magento 跨站脚本漏洞
Vulnerability Description
Wyomind Magento是Wyomind公司的一个票务系统。 Wyomind Help Desk Magento 2 extension v.1.3.6版本及之前版本存在安全漏洞。攻击者利用该漏洞通过ticket message字段的特制有效载荷提升权限。
CVSS Information
N/A
Vulnerability Type
N/A