Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Reflected Cross-Site Scripting (XSS) in Sanoma’s Clickedu
Vulnerability Description
A reflected Cross-Site Scripting (XSS) vulnerability has been discovered in Clickedu. This vulnerability allows an attacker to execute JavaScript code in the victim’s browser by sending them a malicious URL using the endpoint “/user.php/”. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on the user’s behalf.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Clickedu 跨站脚本漏洞
Vulnerability Description
Clickedu是Clickedu公司的一个学术管理平台。 Clickedu存在跨站脚本漏洞,该漏洞源于端点/user.php存在反射型跨站脚本,可能导致攻击者通过恶意URL在受害者浏览器中执行JavaScript代码,窃取敏感数据或执行用户操作。
CVSS Information
N/A
Vulnerability Type
N/A