| Titel | 南昌蓝智科技有限公司 Jspxcms 10.2.0 Cross-site scripting |
|---|
| Beschreibung | Jspxcms is a scalable, enterprise-class open source web content management system (CMS).
Jspxcms v10.2.0 has a cross-site scripting vulnerability, which is caused by background modification of document title parameters without filtering, and an attacker can exploit this vulnerability to execute arbitrary Web scripts or HTML by injecting well-designed payloads. |
|---|
| Quelle | ⚠️ https://github.com/sweatxi/BugHub/blob/main/Jspxcms.pdf |
|---|
| Benutzer | hexixi (UID 59932) |
|---|
| Einreichung | 13.01.2024 08:38 (vor 2 Jahren) |
|---|
| Moderieren | 16.01.2024 16:25 (3 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 250837 [Jspxcms 10.2.0 Document Management Page InfoController.java Titel Cross Site Scripting] |
|---|
| Punkte | 18 |
|---|