Enviar #703736: gitee WarehouseManager v1.1.0 - Remove CAPTCHA Improper Neutralization of Alternate XSS Syntaxinformación

Títulogitee WarehouseManager v1.1.0 - Remove CAPTCHA Improper Neutralization of Alternate XSS Syntax
DescripciónGitee URL:https://gitee.com/yangshare/warehouseManager Multiple stored XSS vulnerabilities were discovered in Gitee WarehouseManager v1.1.0 - Remove CAPTCHA. The affected source code includes the files GoodsManageHandler.java, CustomerManageHandler.java, SupplierManageHandler.java, and RepositoryManageHandler.java located in src/main/java/com/ken/wms/common/controller/. One of these vulnerabilities could potentially affect other administrators, allowing them to obtain cookies and perform identity spoofing.
Fuente⚠️ https://gitee.com/yangshare/warehouseManager/issues/ID9NAU
Usuario
 zzdzz (UID 93061)
Sumisión2025-11-30 15:49 (hace 7 meses)
Moderación2025-12-11 12:04 (11 days later)
EstadoAceptado
Entrada de VulDB335877 [yangshare warehouseManager 仓库管理系统 1.1.0 CustomerManageHandler.java addCustomer Nombre secuencias de comandos en sitios cruzados]
Puntos20

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!