| عنوان | Htmly Htmly CMS 3.1.0 Cross Site Scripting |
|---|
| الوصف | HTMLy v3.1.0 contains a stored cross-site scripting (XSS) vulnerability whereby an editor can inject malicious scripts through the label parameter within the custom fields page, resulting in the execution of arbitrary web scripts or HTML code when an administrator subsequently creates new blog posts or edits existing posts. |
|---|
| المصدر | ⚠️ https://www.notion.so/inmog/Reported-Vulnerability-XSS-Vulnerability-in-htmly-v3-1-0-2627752d1edd804fbd71f310bde44d11 |
|---|
| المستخدم | inmoyang (UID 89515) |
|---|
| ارسال | 02/09/2025 04:47 PM (8 أشهر منذ) |
|---|
| الاعتدال | 20/09/2025 08:54 AM (18 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 325113 [htmly حتى 3.1.0 Custom Field /htmly/admin/field/post label البرمجة عبر المواقع] |
|---|
| النقاط | 19 |
|---|