| Titel | mall <=1.0.3 DOM XSS |
|---|
| Beschreibung | Due to improper access control settings for Swagger-related interfaces, attackers are allowed to access internal API documentation, and one of the interfaces exists a DOM XSS vulnerability. |
|---|
| Quelle | ⚠️ https://github.com/zast-ai/vulnerability-reports/blob/main/mall/DOM_XSS.md |
|---|
| Benutzer | ZAST.AI (UID 87884) |
|---|
| Einreichung | 14.07.2025 11:51 (vor 11 Monaten) |
|---|
| Moderieren | 25.07.2025 10:54 (11 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 317604 [macrozheng mall bis 1.0.3 Swagger UI /swagger-ui/index.html configUrl Cross Site Scripting] |
|---|
| Punkte | 15 |
|---|