漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An unauthenticated reflected cross-site scripting vulnerability in the query handling of CMSimpleXH allows remote attackers to inject and execute arbitrary JavaScript in a victim's browser via a crafted request (e.g., a maliciously crafted POST login). Successful exploitation may lead to theft of session cookies, credential disclosure, or other client-side impacts.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CMSimple_XH 安全漏洞
Vulnerability Description
CMSimple_XH是CMSimple_XH开源的一个快速、小型、易于使用且易于安装的模块化内容管理系统(CMS)。 CMSimple_XH存在安全漏洞,该漏洞源于查询处理中存在未经验证的反射型跨站脚本,可能导致会话cookie窃取、凭据泄露或其他客户端影响。
CVSS Information
N/A
Vulnerability Type
N/A