Soumettre #557236: https://github.com/withstars/Blog-System Blog-System 1.0 Stored Cross-Site Scriptinginformation

Titrehttps://github.com/withstars/Blog-System Blog-System 1.0 Stored Cross-Site Scripting
DescriptionThe Blog-System version 1.0 /api/comment/add interface has a stored cross-site scripting (XSS) vulnerability that allows an attacker to inject malicious JavaScript code via the content parameter. This code is stored in the system and executed when other users visit the relevant page
La source⚠️ https://github.com/caigo8/CVE-md/blob/main/Blog-System/XSS2.md
Utilisateur
 Caigosec (UID 84067)
Soumission13/04/2025 07:26 (il y a 1 Année)
Modérer26/04/2025 09:03 (13 days later)
StatutAccepté
Entrée VulDB306298 [withstars Books-Management-System 1.0 Comment /api/comment/add content cross site scripting]
Points17

PrécédentAperçuSuivant

Interested in the pricing of exploits?

See the underground prices here!

n $_SERVER['REMOTE_ADDR'] ?? '0.0.0.0'; } } ?>