| عنوان | mtons https://gitee.com/mtons/mblog <=3.5.0 Reflected XSS |
|---|
| الوصف | The /admin/role/list endpoint is used for viewing user roles in the admin panel, the search function's user-controlled name parameter has no security checks, and the output has no encoding processing, thus creating reflected XSS vulnerabilities. |
|---|
| المصدر | ⚠️ https://gitee.com/mtons/mblog/issues/ICPMNE |
|---|
| المستخدم | ZAST.AI (UID 87884) |
|---|
| ارسال | 18/08/2025 04:34 AM (8 أشهر منذ) |
|---|
| الاعتدال | 29/08/2025 08:05 AM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 321854 [mtons mblog حتى 3.5.0 /admin/role/list الأسم البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|