| Titel | CSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSS |
|---|
| Beschreibung | In the administration background, when performing website configuration, the Additional Meta Tag section is not strictly filtered, and the running user inserts svg tags to execute code, resulting in a stored XSS vulnerability |
|---|
| Quelle | ⚠️ https://github.com/t34t/CVE/blob/main/CSZCMS/0-Store-XSS-Vulnerability-in-cszcmsV1.3.0.md |
|---|
| Benutzer | testvul (UID 58141) |
|---|
| Einreichung | 16.11.2023 10:05 (vor 3 Jahren) |
|---|
| Moderieren | 26.11.2023 08:45 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 246129 [CSZCMS 1.3.0 Site Settings Page /admin/settings/ Additional Meta Tag Cross Site Scripting] |
|---|
| Punkte | 16 |
|---|