| Titel | yourmaileyes MOOC V1.17 Improper Neutralization of Alternate XSS Syntax |
|---|
| Beschreibung | yourmaileyes MOOC version 1.17 contains a stored XSS vulnerability.In mooc/controller/MainController.java, a comment submission function was found that does not perform any validation on the incoming comments, posing a risk of XSS vulnerabilities.
Project address:https://github.com/yourmaileyes/MOOC |
|---|
| Quelle | ⚠️ https://github.com/yourmaileyes/MOOC/issues/12 |
|---|
| Benutzer | zzdzz (UID 93061) |
|---|
| Einreichung | 12.12.2025 07:42 (vor 4 Monaten) |
|---|
| Moderieren | 27.12.2025 10:43 (15 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 338512 [yourmaileyes MOOC bis 1.17 Submission MainController.java subreview Cross Site Scripting] |
|---|
| Punkte | 18 |
|---|