Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Optimizely EPiServer.CMS.Core before 12.22.0. A high-severity Stored Cross-Site Scripting (XSS) vulnerability exists in the CMS, allowing malicious actors to inject and execute arbitrary JavaScript code, potentially compromising user data, escalating privileges, or executing unauthorized actions. The issue exists in multiple areas, including content editing, link management, and file uploads.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Optimizely EPiServer.CMS.Core 安全漏洞
Vulnerability Description
Optimizely EPiServer.CMS.Core是Optimizely公司的一个内容管理系统核心。 Optimizely EPiServer.CMS.Core 12.22.0之前版本存在安全漏洞。攻击者利用该漏洞可以注入和执行任意 JavaScript 代码。
CVSS Information
N/A
Vulnerability Type
N/A