Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-site Scripting in Ajax.NET Professional
Vulnerability Description
Ajax.NET Professional (AjaxPro) is an AJAX framework for Microsoft ASP.NET which will create proxy JavaScript classes that are used on client-side to invoke methods on the web server. Affected versions of this package are vulnerable cross site scripting attacks. Releases before version 21.12.22.1 are affected. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Ajax.NET Professional 跨站脚本漏洞
Vulnerability Description
Ajax.NET Professional是最早可用于 Microsoft ASP.NET 的 AJAX 框架之一。 Ajax.NET Professional 21.12.22.1之前版本存在跨站脚本漏洞,该漏洞源于容易受到跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A