Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-site scripting - Reflected in Create Subaccount in neorazorx/facturascripts
Vulnerability Description
Cross-site scripting - Reflected in Create Subaccount in GitHub repository neorazorx/facturascripts prior to 2022.07. This vulnerability can be arbitrarily executed javascript code to steal user'cookie, perform HTTP request, get content of `same origin` page, etc ...
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
FacturaScripts 跨站脚本漏洞
Vulnerability Description
FacturaScripts是西班牙Carlos Garcia个人开发者的一个开源 ERP 软件。 FacturaScripts存在安全漏洞,攻击者利用该漏洞可以执行任意javascript代码,窃取用户的cookie,执行HTTP请求,获取“同源”页面内容等。
CVSS Information
N/A
Vulnerability Type
N/A