Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in Umbraco CMS v14.3.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. NOTE: This has been disputed by the vendor since this potential attack is only possible via authenticated users who have been manually allowed access to the CMS. There was a deliberate decision made not to apply HTML sanitization at the product level.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Umbraco CMS 安全漏洞
Vulnerability Description
Umbraco CMS是丹麦Umbraco公司的一个内容管理系统。 Umbraco CMS v14.3.1版本存在安全漏洞,该漏洞源于容易受到存储型跨站脚本攻击,允许攻击者通过精心设计的有效负载执行任意 Web 脚本或 HTML。
CVSS Information
N/A
Vulnerability Type
N/A