Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in MyGraph
Vulnerability Description
MyGraph is a permission management system. Versions prior to 1.0.4 are vulnerable to a storage XSS vulnerability leading to Remote Code Execution. This issue is patched in version 1.0.4. There is no known workaround.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
MyGraph 跨站脚本漏洞
Vulnerability Description
MyGraph是renlm个人开发者的一个集成权限管理系统、统一用户认证中心、实时动态网关代理与在线文档管理等诸多强大功能于一身的后台系统开发模板。 MyGraph 1.0.4之前版本存在安全漏洞。攻击者利用该漏洞执行跨站点脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A