Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-Site Scripting (XSS) vulnerability in Oct8ne
Vulnerability Description
Cross-Site Scripting (XSS) vulnerability in the Oct8ne system. This flaw could allow an attacker to embed harmful JavaScript code into the body of a chat message. This manipulation occurs when the chat content is intercepted and altered, leading to the execution of the JavaScript payload.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Oct8ne 跨站脚本漏洞
Vulnerability Description
Oct8ne是Oct8ne公司的一款在线聊天软件。 Oct8ne存在跨站脚本漏洞,该漏洞源于聊天内容在被拦截和修改时,可允许攻击者嵌入有害的JavaScript代码到聊天消息中,导致JavaScript代码被执行。
CVSS Information
N/A
Vulnerability Type
N/A