Soumettre #514960: StarSea99 starsea-mall V1.0.0 Cross Site Scriptinginformation

TitreStarSea99 starsea-mall V1.0.0 Cross Site Scripting
DescriptionThe system backend /admin/goods/update interface does not filter the goodsIntro and goodsName parameters, allowing attackers to insert malicious JS files and create XSS vulnerabilities image
La source⚠️ https://github.com/ExecX/security/blob/main/333.md
Utilisateur
 ExecX (UID 81447)
Soumission05/03/2025 13:56 (il y a 1 Année)
Modérer07/03/2025 07:13 (2 days later)
StatutAccepté
Entrée VulDB298901 [StarSea99 starsea-mall 1.0 /admin/goods/update goodsName cross site scripting]
Points16

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!