Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
XSS in Mevzuattr Software's MevzuatTR
Vulnerability Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting'), Improper Restriction of Rendered UI Layers or Frames vulnerability in Mevzuattr Software MevzuatTR allows Phishing, iFrame Overlay, Clickjacking, Forceful Browsing. This issue needs high privileges. This issue affects MevzuatTR: before 12.02.2025.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
MevzuatTR 安全漏洞
Vulnerability Description
MevzuatTR是土耳其MevzuatTR公司的一款土耳其司法判决检索与通知在线平台。 MevzuatTR 12.02.2025之前版本存在安全漏洞,该漏洞源于输入中和不当和UI层或框架限制不当,可能导致钓鱼攻击、iFrame覆盖、点击劫持和强制浏览。
CVSS Information
N/A
Vulnerability Type
N/A