Xiuno BBS 跨站脚本漏洞

Xiuno BBS is an open source forum program based on PHP and MySQL. Xiuno BBS suffers from a cross-site scripting vulnerability that originates from the failure of the product/admin/?setting-base.htm page to properly handle data in the sitename field. An attacker can execute client-side code via th...

PT-2019-15246

Name of the Vulnerable Software and Affected Versions Comtech H8 Heights Remote Gateway version 2.5.1 Description The issue allows for XSS and HTML injection attacks through the SiteName field. Recommendations For Comtech H8 Heights Remote Gateway version 2.5.1, avoid using the SiteName field unt...