إرسال #708323: xiweicheng TMS v2.28.0 Cross Site Scriptingالمعلومات

عنوانxiweicheng TMS v2.28.0 Cross Site Scripting
الوصفTMS v2.28.0 /admin/chat/create interface Cross-Site Scripting (XSS) vulnerability In TMS System version v2.28.0, the `/admin/chat/create` endpoint does not apply entity encoding to user-supplied input, leading to a Cross-Site Scripting (XSS) vulnerability. https://github.com/ha1yu-Yiqiyin/warehouse/blob/main/TMS_v2.28.0_XSS-2.md
المصدر⚠️ https://github.com/ha1yu-Yiqiyin/warehouse/blob/main/TMS_v2.28.0_XSS-2.md
المستخدم
 red0_ha1yu (UID 61457)
ارسال07/12/2025 01:29 PM (6 أشهر منذ)
الاعتدال16/12/2025 09:57 PM (9 days later)
الحالةمكرر
إدخال VulDB249676 [xiweicheng TMS 2.28.0 Click Here البرمجة عبر المواقع]
النقاط0

التالي نظرة عامة السابق

Interested in the pricing of exploits?

See the underground prices here!