Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Stored XSS viva .svg file upload in causefx/organizr
Vulnerability Description
Stored XSS viva .svg file upload in GitHub repository causefx/organizr prior to 2.1.1810. This allows attackers to execute malicious scripts in the user's browser and it can lead to session hijacking, sensitive data exposure, and worse.
CVSS Information
N/A
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Organizr 代码问题漏洞
Vulnerability Description
Organizr是一个选项卡管理系统。旨在成为服务器前端的一站式商店。 Organizr 2.1.1810 之前存在代码问题漏洞,攻击者可以在用户的浏览器中执行恶意脚本,并可能导致会话劫持、敏感数据暴露。
CVSS Information
N/A
Vulnerability Type
N/A