Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Cross-Site Scripting (XSS) vulnerability in the UCRM Argentina AFIP invoices Plugin (v1.2.0 and earlier) could allow privilege escalation if an Administrator is tricked into visiting a crafted malicious page. This plugin is disabled by default. Affected Products: UCRM Argentina AFIP invoices Plugin (Version 1.2.0 and earlier) Mitigation: Update UCRM Argentina AFIP invoices Plugin to Version 1.3.0 or later.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Ubiquiti UCRM Argentina AFIP invoices Plugin 安全漏洞
Vulnerability Description
Ubiquiti UCRM Argentina AFIP invoices Plugin是美国优比快(Ubiquiti)公司的一个扩展插件。 Ubiquiti UCRM Argentina AFIP invoices Plugin 1.2.0及之前版本存在安全漏洞,该漏洞源于存在跨站脚本,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A