Enviar #554639: DaiCuoCms DaiCuoCms article manage system 1.3.13 Cross Site Scriptinginformación

TítuloDaiCuoCms DaiCuoCms article manage system 1.3.13 Cross Site Scripting
DescripciónDaiCuoCms version 1.3.13 is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability. An authenticated user with access to the admin panel can inject malicious JavaScript code into article content or other editable fields. This code is then rendered and executed in the context of users who visit the affected frontend pages, potentially leading to session hijacking, phishing, or other malicious actions. The lack of proper input sanitization and output encoding makes this vulnerability exploitable.
Fuente⚠️ https://github.com/daicuo/cms/issues/1
Usuario
 A13niL (UID 83935)
Sumisión2025-04-09 08:25 (hace 1 Año)
Moderación2025-04-18 16:00 (9 days later)
EstadoAceptado
Entrada de VulDB305648 [DaiCuo 1.3.13 SEO Optimization Settings Section secuencias de comandos en sitios cruzados]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!