Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
JLex GuestBook 1.6.4 Reflected Cross-Site Scripting via URL Parameter
Vulnerability Description
JLex GuestBook 1.6.4 contains a reflected cross-site scripting vulnerability in the 'q' URL parameter that allows attackers to inject malicious scripts. Attackers can craft malicious links with XSS payloads to steal session tokens or execute arbitrary JavaScript in victims' browsers.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
JLex GuestBook 跨站脚本漏洞
Vulnerability Description
JLex GuestBook是JLexArt开源的一个访客留言板组件。 JLex GuestBook 1.6.4版本存在跨站脚本漏洞,该漏洞源于q URL参数存在反射型跨站脚本,可能导致注入恶意脚本。
CVSS Information
N/A
Vulnerability Type
N/A