Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Reflected Cross-Site Scripting (rXSS) in krpano before version 1.23.2 allows a remote unauthenticated attacker to execute arbitrary JavaScript in the victim's browser via a crafted URL to the passQueryParameters function with the xml parameter enabled.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
krpano 安全漏洞
Vulnerability Description
krpano是奥地利krpano公司的一个VR媒体制作和显示软件工具集。 krpano 1.23.2之前版本存在安全漏洞,该漏洞源于passQueryParameters函数处理不当,可能导致反射型跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A