Soumettre #239326: CSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSSinformation

TitreCSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSS
DescriptionIn the administration background, when performing website configuration, the Additional Meta Tag section is not strictly filtered, and the running user inserts svg tags to execute code, resulting in a stored XSS vulnerability
La source⚠️ https://github.com/t34t/CVE/blob/main/CSZCMS/0-Store-XSS-Vulnerability-in-cszcmsV1.3.0.md
Utilisateur
 testvul (UID 58141)
Soumission16/11/2023 10:05 (il y a 3 ans)
Modérer26/11/2023 08:45 (10 days later)
StatutAccepté
Entrée VulDB246129 [CSZCMS 1.3.0 Site Settings Page /admin/settings/ Additional Meta Tag cross site scripting]
Points16

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!