Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in TotalJS messenger commit b6cf1c9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the user information field.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TotalJS messenger 跨站脚本漏洞
Vulnerability Description
TotalJS messenger是Total.js Platform开源的一个 Node.js 开源 Slack 替代方案。 TotalJS Messenger b6cf1c9版本存在跨站脚本漏洞,攻击者利用该漏洞可以通过注入用户信息字段的精心设计的有效载荷执行任意 Web 脚本或 HTML。
CVSS Information
N/A
Vulnerability Type
N/A