漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
HumHub is vulnerable to XSS through its Meta Search component
Vulnerability Description
HumHub is an Open Source Enterprise Social Network. Versions below 1.17.4 have a XSS vulnerability in the Meta-Search feature which allows malicious input to be executed in search previews. This issue is fixed in version 1.17.4.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
HumHub 跨站脚本漏洞
Vulnerability Description
HumHub是HumHub开源的一套基于Yii PHP框架编写的开源社交网络软件。 HumHub 1.17.4之前版本存在跨站脚本漏洞,该漏洞源于Meta-Search功能中存在跨站脚本漏洞,可能导致恶意输入在搜索预览中执行。
CVSS Information
N/A
Vulnerability Type
N/A