| عنوان | 长沙友点软件科技有限公司 YouDianCMS 9.5.21 Cross Site Scripting |
|---|
| الوصف | YouDianCMS v9.5.21 has a reflected XSS vulnerability in App/Tpl/Member/Default/Order/index.html.Attackers can add malicious JavaScript scripts to the URL, and the server will concatenate the malicious scripts into the URL and return them to the browser, ultimately causing XSS vulnerabilities |
|---|
| المصدر | ⚠️ https://github.com/zonesec0/findcve/issues/6 |
|---|
| المستخدم | zonesec (UID 74980) |
|---|
| ارسال | 26/03/2025 07:14 AM (1 سنة منذ) |
|---|
| الاعتدال | 12/04/2025 01:48 PM (17 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 304570 [YouDianCMS 9.5.21 index.html.Attackers OrderNumber البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|