| Titel | 长沙友点软件科技有限公司 YouDianCMS 9.5.21 Cross Site Scripting |
|---|
| Beschreibung | YouDianCMS v9.5.21 has another reflected XSS vulnerability in App/Tpl/Admin/Default/Log/index.html.Attackers can add malicious JavaScript scripts to the URL, and the server will concatenate the malicious scripts into the URL and return them to the browser, ultimately causing XSS vulnerabilities |
|---|
| Quelle | ⚠️ https://github.com/zonesec0/findcve/issues/5 |
|---|
| Benutzer | zonesec (UID 74980) |
|---|
| Einreichung | 26.03.2025 07:11 (vor 1 Jahr) |
|---|
| Moderieren | 12.04.2025 13:48 (17 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 304569 [YouDianCMS 9.5.21 index.html UserName/LogType Cross Site Scripting] |
|---|
| Punkte | 0 |
|---|