Submit #372001: LyLme LyLme_spage v1.9.5 Cross Site Scriptinginfo

TitelLyLme LyLme_spage v1.9.5 Cross Site Scripting
Beschreibung在 admin/link.php 的 lylme_spage v1.9.5 中发现一个反映的 XSS 漏洞。 https://github.com/LyLme/lylme_spage/blob/b7c430a49e8b247ddb04401b1176157c10d52948/admin/link.php#L71-L77 The vulnerability stems from the lack of filtering or encoding of the $id parameter, allowing an attacker to inject arbitrary HTML and JavaScript code into a link.php page.
Quelle⚠️ https://github.com/Hebing123/cve/issues/43
Benutzer
 jiashenghe (UID 39445)
Einreichung10.07.2024 05:37 (vor 2 Jahren)
Moderieren20.07.2024 07:59 (10 days later)
StatusDuplikat
VulDB Eintrag266940 [LyLme_spage 1.9.5 admin/link.php Cross Site Scripting]
Punkte0

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!