Submit #523896: https://gitee.com/wcms/WCMS WCMS 11 Cross Site Scriptinginfo

Titelhttps://gitee.com/wcms/WCMS WCMS 11 Cross Site Scripting
BeschreibungVersion 11 of WCMS has a stored XSS vulnerability. Attackers can submit malicious scripts to the username parameter. When an administrator accesses /index.php?memberadmin/getallmember, the malicious script will be executed, resulting in session hijacking or page tampering.
Quelle⚠️ https://github.com/caigo8/CVE-md/blob/main/wcms11/%E5%AD%98%E5%82%A8%E5%9E%8BXSS.md
Benutzer
 Caigo (UID 81287)
Einreichung20.03.2025 12:00 (vor 1 Jahr)
Moderieren30.03.2025 09:51 (10 days later)
StatusAkzeptiert
VulDB Eintrag302031 [WCMS 11 Registration setregister Benutzername Cross Site Scripting]
Punkte17

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!