Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ISAMS 22.2.3.2 is prone to stored Cross-site Scripting (XSS) attack on the title field for groups, allowing an attacker to store a JavaScript payload that will be executed when another user uses the application.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ISAMS 跨站脚本漏洞
Vulnerability Description
ISAMS是ISAMS公司的一个 100% 基于 Web 的 MIS。可以从任何地方访问,与多个第三方集成到在线学习平台。 ISAMS 22.2.3.2版本存在安全漏洞,该漏洞源于攻击者可以对其groups的title字段实现存储型跨站脚本,允许攻击者存储JavaScript有效载荷,以便在其他用户使用应用程序时执行。
CVSS Information
N/A
Vulnerability Type
N/A