Submit #469217: ZeroWdd manager-system 1.0 Storage XSSinfo

TitleZeroWdd manager-system 1.0 Storage XSS
DescriptionThe submitAddPermission method in src/main/java/com/zero/system/controller/PermissionController. java did not filter the incoming URL parameter, resulting in storage XSS
Source⚠️ https://github.com/ZeroWdd/manager-system/issues/7
User
 LVZC1 (UID 76422)
Submission12/26/2024 02:45 PM (3 months ago)
Moderation01/05/2025 10:07 AM (10 days later)
StatusAccepted
VulDB Entry290231 [ZeroWdd studentmanager 1.0 PermissionController. java submitAddPermission url cross site scripting]
Points15

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!