漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
FlightPath 7.5 contains a Cross Site Scripting (XSS) vulnerability, which allows authenticated remote attackers with administrative rights to inject arbitrary JavaScript in the web browser of a user by including a malicious payload into the Last Name section in the Create/Edit Faculty/Staff User or Create/Edit Student User sections.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FlightPath 安全漏洞
Vulnerability Description
FlightPath是FlightPath公司的一套面向大学的开源学术咨询系统。 FlightPath 7.5版本存在安全漏洞。攻击者利用该漏洞可以在用户的 Web 浏览器中注入任意 JavaScript。
CVSS Information
N/A
Vulnerability Type
N/A