| Titel | The PHP version of Feifei Movie and Television System V2.7.130201 has a storage type XSS vulnerability |
|---|
| Beschreibung | The vulnerability exists in \Public\system\slide_add.htmlfiles that are not filtered for any special characters during the addition process, resulting in a storage based XSS vulnerability.After an attacker submits a piece of XSS code, the server receives and stores it. When other users access the page containing the XSS code, the XSS code is parsed and executed by the browser |
|---|
| Quelle | ⚠️ https://github.com/1114506941/lsummer/blob/main/README.md |
|---|
| Benutzer | lsummer (UID 42660) |
|---|
| Einreichung | 22.03.2023 07:30 (vor 3 Jahren) |
|---|
| Moderieren | 22.03.2023 11:39 (4 hours later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 223557 [FeiFeiCMS 2.7.130201 Extension Tool slide_add.html Cross Site Scripting] |
|---|
| Punkte | 20 |
|---|