| عنوان | https://github.com/withstars/Blog-System Blog-System 1.0 Stored Cross-Site Scripting |
|---|
| الوصف | The Blog-System version 1.0 /api/comment/add interface has a stored cross-site scripting (XSS) vulnerability that allows an attacker to inject malicious JavaScript code via the content parameter. This code is stored in the system and executed when other users visit the relevant page |
|---|
| المصدر | ⚠️ https://github.com/caigo8/CVE-md/blob/main/Blog-System/XSS2.md |
|---|
| المستخدم | Caigosec (UID 84067) |
|---|
| ارسال | 13/04/2025 07:26 AM (1 سنة منذ) |
|---|
| الاعتدال | 26/04/2025 09:03 AM (13 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 306298 [withstars Books-Management-System 1.0 Comment /api/comment/add content البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|