Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple vulnerabilities in Seafile
Vulnerability Description
A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Seafile 跨站脚本漏洞
Vulnerability Description
Seafile是中国海文互知网络技术(Seafile)公司的一款开源的企业云盘。该产品具有Markdown WYSIWYG编辑,Wiki,文件标签等功能。 Seafile v12.0.10版本存在跨站脚本漏洞,该漏洞源于PUT参数name未过滤,可能导致存储型跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A