| Titel | youlaitech vue3-element-admin <=v3.4.0 XSS |
|---|
| Beschreibung | A second-order stored Cross-Site Scripting (XSS) vulnerability has been identified in the notice management system. Authenticated users with notice creation or edit privileges can inject malicious JavaScript that will execute in the browsers of other users when they view the compromised notice. |
|---|
| Quelle | ⚠️ https://github.com/AnalogyC0de/public_exp/blob/main/archives/vue3-element-admin/report.md |
|---|
| Benutzer | Ana10gy (UID 93358) |
|---|
| Einreichung | 18.12.2025 05:11 (vor 6 Monaten) |
|---|
| Moderieren | 30.12.2025 19:39 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 339080 [youlaitech vue3-element-admin bis 3.4.0 Notice index.vue Cross Site Scripting] |
|---|
| Punkte | 17 |
|---|