Soumettre #224899: flusity-CMS menu_id in posts.php_ XSS (Cross Site Scripting) exists for the place parameterinformation

Titreflusity-CMS menu_id in posts.php_ XSS (Cross Site Scripting) exists for the place parameter
Descriptionflusity-CMS menu_id in posts.php_ XSS (Cross Site Scripting) exists for the place parameter. echo "<script>loadPostAddForm ($menu_id);</script>"; Users can control the incoming parameter menu_ ID, resulting in an xss vulnerability
La source⚠️ https://github.com/flusity/flusity-CMS/issues/3
Utilisateur
 zihe (UID 56943)
Soumission24/10/2023 12:42 (il y a 3 ans)
Modérer26/10/2023 20:14 (2 days later)
StatutAccepté
Entrée VulDB243642 [flusity CMS core/tools/posts.php loadPostAddForm menu_id cross site scripting]
Points17

PrécédentAperçuSuivant

Do you need the next level of professionalism?

Upgrade your account now!