漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Multiple Cross-Site Scripting (XSS) vulnerabilities exist in xmall v1.1 due to improper handling of user-supplied data. User input fields such as username and description are directly rendered into HTML without proper sanitization or encoding, allowing attackers to inject and execute malicious scripts.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
XMall 安全漏洞
Vulnerability Description
XMall是Exrick个人开发者的一个基于SOA架构的分布式电商购物商城。 XMall v1.1版本存在安全漏洞,该漏洞源于用户输入处理不当,可能导致跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A