Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The chat feature in the application Sourcecodester FAQ Bot with AI Assistant v1.0 is vulnerable to Cross-Site Scripting (XSS) due to improper handling of user-supplied input. An attacker can inject malicious HTML or JavaScript into chat messages, which executes in the browser of any user viewing the conversation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SourceCodester FAQ Bot with AI Assistant 安全漏洞
Vulnerability Description
SourceCodester FAQ Bot with AI Assistant是SourceCodester开源的一个带有人工智能助手的问答机器人。 SourceCodester FAQ Bot with AI Assistant v1.0版本存在安全漏洞,该漏洞源于对用户提供输入的处理不当,可能导致跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A