Soumettre #557385: Vendor JSite 1.0 Stored Cross-Site Scripting Attackinformation

TitreVendor JSite 1.0 Stored Cross-Site Scripting Attack
DescriptionVersion 1.0 of JSite /sys/office/save interface has a Cross-Site Scripting (XSS) vulnerability. Attackers can inject malicious JavaScript code through the remarks parameter.
La source⚠️ https://github.com/caigo8/CVE-md/blob/main/JSite/XSS2.md
Utilisateur
 anshub (UID 30822)
Soumission14/04/2025 03:37 (il y a 1 Année)
Modérer26/04/2025 09:14 (12 days later)
StatutAccepté
Entrée VulDB306306 [baseweb JSite jusqu’à 1.0 /sys/office/save Remarques cross site scripting]
Points15

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!

n $_SERVER['REMOTE_ADDR'] ?? '0.0.0.0'; } } ?>