Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Code Injection in display of tag title on saving tags in microweber/microweber
Vulnerability Description
HTML injection attack is closely related to Cross-site Scripting (XSS). HTML injection uses HTML to deface the page. XSS, as the name implies, injects JavaScript into the page. Both attacks exploit insufficient validation of user input.
CVSS Information
N/A
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Microweber 跨站脚本漏洞
Vulnerability Description
Microweber是美国Microweber社区的一套可提供拖拽功能的网上商店管理系统。该系统包括添加商品、图片等模块。 Microweber 存在跨站脚本漏洞,该漏洞源于在“Tag Name”中发现包含 HTML 注入漏洞。
CVSS Information
N/A
Vulnerability Type
N/A