Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Eastnets PaymentSafe Edit Manual Reply directRouter.rfc cross site scripting
Vulnerability Description
A vulnerability, which was classified as problematic, was found in Eastnets PaymentSafe 2.5.26.0. This affects an unknown part of the file /directRouter.rfc of the component Edit Manual Reply Handler. The manipulation of the argument Title leads to basic cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 2.5.27.0 is able to address this issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Vulnerability Type
Web页面中脚本相关HTML标签转义处理不恰当(基本跨站脚本)
Vulnerability Title
Eastnets PaymentSafe 安全漏洞
Vulnerability Description
Eastnets PaymentSafe是阿联酋Eastnets公司的一款快速的gpi付款筛选解决方案,可实时检测和预防欺诈行为。 Eastnets PaymentSafe 2.5.26.0版本存在安全漏洞,该漏洞源于跨站脚本,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A