| عنوان | gitee WarehouseManager v1.1.0 - Remove CAPTCHA Improper Neutralization of Alternate XSS Syntax |
|---|
| الوصف | Gitee URL:https://gitee.com/yangshare/warehouseManager
Multiple stored XSS vulnerabilities were discovered in Gitee WarehouseManager v1.1.0 - Remove CAPTCHA. The affected source code includes the files GoodsManageHandler.java, CustomerManageHandler.java, SupplierManageHandler.java, and RepositoryManageHandler.java located in src/main/java/com/ken/wms/common/controller/. One of these vulnerabilities could potentially affect other administrators, allowing them to obtain cookies and perform identity spoofing. |
|---|
| المصدر | ⚠️ https://gitee.com/yangshare/warehouseManager/issues/ID9NAU |
|---|
| المستخدم | zzdzz (UID 93061) |
|---|
| ارسال | 30/11/2025 03:49 PM (7 أشهر منذ) |
|---|
| الاعتدال | 11/12/2025 12:04 PM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 335877 [yangshare warehouseManager 仓库管理系统 1.1.0 CustomerManageHandler.java addCustomer الأسم البرمجة عبر المواقع] |
|---|
| النقاط | 20 |
|---|