WCMS WCMS 11 Cross Site Scriptingالمعلومات

عنوان	https://gitee.com/wcms/WCMS WCMS 11 Cross Site Scripting
الوصف	Version 11 of WCMS has a stored XSS vulnerability. Attackers can submit malicious scripts to the username parameter. When an administrator accesses /index.php?memberadmin/getallmember, the malicious script will be executed, resulting in session hijacking or page tampering.
المصدر	⚠️ https://github.com/caigo8/CVE-md/blob/main/wcms11/%E5%AD%98%E5%82%A8%E5%9E%8BXSS.md
المستخدم	Caigo (UID 81287)
ارسال	20/03/2025 12:00 PM (1 سنة منذ)
الاعتدال	30/03/2025 09:51 AM (10 days later)
الحالة	تمت الموافقة
إدخال VulDB	302031 [WCMS 11 Registration setregister أسم المستخدم البرمجة عبر المواقع]
النقاط	17

Want to know what is going to be exploited?

We predict KEV entries!