iWT FaceSentry Access Control System 跨站脚本漏洞

iWT FaceSentry Access Control System is a face recognition access control system from the Chinese company iWT. A cross-site scripting vulnerability exists in iWT FaceSentry Access Control System version 6.4.8, which stems from unvalidated input of the msg parameter in the pluginInstall.php file,...

PT-2026-1675

Name of the Vulnerable Software and Affected Versions FaceSentry Access Control System version 6.4.8 Description The FaceSentry Access Control System is affected by a cross-site scripting issue in the msg parameter of the pluginInstall.php file. This allows attackers to inject malicious scripts...