Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stored cross-site scripting (XSS) vulnerability in the Admin Log Viewer of S-Cart <=10.0.3 allows a remote authenticated attacker to inject arbitrary web script or HTML via a crafted User-Agent header. The script is executed in an administrator's browser when they view the security log page, which could lead to session hijacking or other malicious actions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
s-cart 安全漏洞
Vulnerability Description
s-cart是s-cart社区的一个基于Php的电子商务管理平台。 s-cart 10.0.3及之前版本存在安全漏洞,该漏洞源于User-Agent标头未充分验证,可能导致存储型跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A