Enviar #239326: CSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSSinformación

TítuloCSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSS
DescripciónIn the administration background, when performing website configuration, the Additional Meta Tag section is not strictly filtered, and the running user inserts svg tags to execute code, resulting in a stored XSS vulnerability
Fuente⚠️ https://github.com/t34t/CVE/blob/main/CSZCMS/0-Store-XSS-Vulnerability-in-cszcmsV1.3.0.md
Usuario
 testvul (UID 58141)
Sumisión2023-11-16 10:05 (hace 3 años)
Moderación2023-11-26 08:45 (10 days later)
EstadoAceptado
Entrada de VulDB246129 [CSZCMS 1.3.0 Site Settings Page /admin/settings/ Additional Meta Tag secuencias de comandos en sitios cruzados]
Puntos16

AnteriorVisión De ConjuntoPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!