Soumettre #680851: https://gitee.com/qianfox/foxcms FoxCMS v1.2.16 Cross Site Scriptinginformation

Titrehttps://gitee.com/qianfox/foxcms FoxCMS v1.2.16 Cross Site Scripting
DescriptionA stored cross-site scripting (XSS) vulnerability exists in FoxCMS v1.2.16 that arises from the system not adequately filtering and escaping user-input data before it is stored on the server. An attacker can persistently store malicious code on the server by submitting malicious constructed script content. When other users visit a page containing this malicious content, the script will be executed in their browser, potentially leading to risks such as session hijacking, leakage of sensitive information (such as stealing cookies), malicious operation simulation, or tampering with page content.
La source⚠️ https://github.com/21151213732/CVE/blob/main/FoxCMS-XSS2.md
Utilisateur
 xxllyy (UID 89360)
Soumission23/10/2025 03:08 (il y a 8 mois)
Modérer09/11/2025 07:34 (17 days later)
StatutAccepté
Entrée VulDB331640 [qianfox FoxCMS jusqu’à 1.2.16 Product.php add/edit Titre cross site scripting]
Points20

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!