CNNVD-202601-4479 Information
CNNVD ID
CNNVD-202601-4479
Related CVE
- CNNVD Published: 2026-01-27
Description (Chinese)
Froxlor是Froxlor团队的一套轻量级服务器管理软件。 Froxlor 0.10.16版本存在跨站脚本漏洞,该漏洞源于对客户注册输入字段的清理不当,可能导致存储型跨站脚本攻击。
Description (English)
Frostlor is a lightweight server management software for the Frostlor team. Version Froxlor 0.10.16 has a cross-site script loophole, which results from inappropriate cleaning of the customer registration input field and may result in a storage-type cross-site script attack.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
Froxlor
Published
2026-01-27
Last Modified
2026-02-24
References
https://froxlor.org/ https://froxlor.org/download/ https://www.exploit-db.com/exploits/49063 https://www.vulncheck.com/advisories/froxlor-froxlor-server-management-panel-persistent-cross-site-scripting https://www.vulnerability-lab.com/get_content.php?id=2241 https://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M. https://www.vulnerability-lab.com/show.php?user=Vulnerability-Lab
Share on: