Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An unauthenticated reflected cross-site scripting vulnerability in the query handling of CMSimpleXH allows remote attackers to inject and execute arbitrary JavaScript in a victim's browser via a crafted request (e.g., a maliciously crafted POST login). Successful exploitation may lead to theft of session cookies, credential disclosure, or other client-side impacts.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CMSimple_XH 安全漏洞
Vulnerability Description
CMSimple_XH是CMSimple_XH开源的一个快速、小型、易于使用且易于安装的模块化内容管理系统(CMS)。 CMSimple_XH存在安全漏洞,该漏洞源于查询处理中存在未经验证的反射型跨站脚本,可能导致会话cookie窃取、凭据泄露或其他客户端影响。
CVSS Information
N/A
Vulnerability Type
N/A