Enviar #267581: 南昌蓝智科技有限公司 Jspxcms 10.2.0 Cross-site scriptinginformación

Título南昌蓝智科技有限公司 Jspxcms 10.2.0 Cross-site scripting
DescripciónJspxcms is a scalable, enterprise-class open source web content management system (CMS). Jspxcms v10.2.0 has a cross-site scripting vulnerability due to unfiltered title and tag parameters in background survey selection, which can be exploited by an attacker to execute arbitrary Web scripts or HTML by injecting well-designed payloads.
Fuente⚠️ https://github.com/sweatxi/BugHub/blob/main/jspXCMS-%20Survey%20label.pdf
Usuario
 hexixi (UID 59932)
Sumisión2024-01-14 11:37 (hace 2 años)
Moderación2024-01-19 10:40 (5 days later)
EstadoAceptado
Entrada de VulDB251545 [Jspxcms 10.2.0 Survey Label secuencias de comandos en sitios cruzados]
Puntos18

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!