Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Geeklog v2.2.2 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Mail Settings[backend], Mail Settings[host], Mail Settings[port] and Mail Settings[auth] parameters of the /admin/configuration.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Geeklog 跨站脚本漏洞
Vulnerability Description
Geeklog是Geeklog开源的一种开源软件。可用作 Weblog,CMS 或 Web Portal。 Geeklog v2.2.2版本存在跨站脚本漏洞,该漏洞源于允许攻击者通过精心设计的有效负载注入邮件设置(backend、host、port、auth)来执行任意 Web 脚本或 HTML。
CVSS Information
N/A
Vulnerability Type
N/A