Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
wangchenyi1996 chat_forum q.php cross site scripting
Vulnerability Description
A vulnerability has been found in wangchenyi1996 chat_forum up to 80bdb92f5b460d36cab36e530a2c618acef5afd2. This impacts an unknown function of the file /q.php. Such manipulation of the argument path leads to cross site scripting. The attack may be launched remotely. This product operates on a rolling release basis, ensuring continuous delivery. Consequently, there are no version details for either affected or updated releases.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
chat_forum 代码注入漏洞
Vulnerability Description
chat_forum是王承毅个人开发者的一个聊天交友论坛系统。 chat_forum 80bdb92f5b460d36cab36e530a2c618acef5afd2及之前版本存在代码注入漏洞,该漏洞源于对文件/q.php中参数path的错误操作,可能导致跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A