Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
myapnea Title cross site scripting
Vulnerability Description
A vulnerability, which was classified as problematic, was found in myapnea up to 29.0.x. Affected is an unknown function of the component Title Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 29.1.0 is able to address this issue. The name of the patch is 99934258530d761bd5d09809bfa6c14b598f8d18. It is recommended to upgrade the affected component. VDB-216750 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
MyApnea 跨站脚本漏洞
Vulnerability Description
MyApnea是MyApnea开源的一个 web 框架。 MyApnea 29.0.x版本存在跨站脚本漏洞,该漏洞源于其Title Handler组件的未知函数允许攻击者实现跨站脚本。
CVSS Information
N/A
Vulnerability Type
N/A