Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CTparental before 4.45.03 is vulnerable to cross-site request forgery (CSRF) in the CTparental admin panel. By combining CSRF with XSS, an attacker can trick the administrator into clicking a link that cancels the filtering for all standard users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CTparental 跨站请求伪造漏洞
Vulnerability Description
CTparental是一个过滤网页内容的工具。可以使用黑名单或白名单过滤不当内容,可以控制浏览互联网的时间和控制设备的活跃时间。 marsat CTparental存在跨站请求伪造漏洞,该漏洞源于在 4.45.03 版本之前的CTparental管理面板容易受到跨站请求伪造(CSRF)的攻击。通过将CSRF与XSS结合起来,攻击者可以诱使管理员单击一个链接,取消对所有标准用户的过滤。
CVSS Information
N/A
Vulnerability Type
N/A