Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Form Tools through 3.0.20. A low-privileged user can trigger Reflected XSS when a viewing a form via the submission_id parameter, e.g., clients/forms/edit_submission.php?form_id=1&view_id=1&submission_id=[XSS].
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Form Tools 跨站脚本漏洞
Vulnerability Description
Form Tools是开源的一个表单工具脚本、模块、主题和 API 的代码库。 Form Tools 存在跨站脚本漏洞,该漏洞源于从 3.0.20 开始,在 Form Tools 中发现了一个问题。 低权限用户可以在通过submission_id参数查看表单时触发反射型XSS,例如clients/forms/edit_submission.php?form_id=1&view_id=1&submission_id=[XSS]。
CVSS Information
N/A
Vulnerability Type
N/A