Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
XMB Forum 1.9.12.06 Persistent Cross-Site Scripting via Admin Templates
Vulnerability Description
XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for all forum users when pages are rendered.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
XMB Forum 跨站脚本漏洞
Vulnerability Description
XMB Forum是XMB开源的一个论坛系统。 XMB Forum 1.9.12.06版本存在跨站脚本漏洞,该漏洞源于模板和首页设置中存在持久型跨站脚本,可能导致所有论坛用户执行脚本。
CVSS Information
N/A
Vulnerability Type
N/A