Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Learning with Texts (LWT) 2.0.3 is vulnerable to Cross Site Scripting (XSS). The application has a specific function that does not filter special characters in URL parameters. Remote attackers can inject JavaScript code without authorization. Exploiting this vulnerability, attackers can steal user credentials or execute actions such as injecting malicious scripts or redirecting users to malicious sites.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Learning with Texts 安全漏洞
Vulnerability Description
Learning with Texts(LWT)是Jon Gauthier个人开发者的一款软件应用程序。可让用户导入文本、阅读、保存、查看和测试多种语言的单词和表达式。 Learning with Texts 2.0.3版本存在安全漏洞,该漏洞源于没有过滤URL参数中特殊字符。攻击者利用该漏洞可以在未经授权的情况下注入JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A