| Titolo | DedeBIZ DedeBIZ 6.3.0 Stored Cross-Site Scripting |
|---|
| Descrizione | There is a stored XSS vulnerability in dedebiz 6.3.0. By modifying the website copyright information in the administrator backend site settings and inserting a malicious payload, arbitrary JS code can be executed. The corresponding source code can be downloaded from the official website: https://www.dedebiz.com/download |
|---|
| Fonte | ⚠️ https://github.com/JTZ-a/SRC/blob/master/DedeBIZ/DedeBIZ%20-%20StoredXSS/README.md |
|---|
| Utente | JTZ- (UID 59232) |
|---|
| Sottomissione | 07/01/2024 10:52 (2 anni fa) |
|---|
| Moderazione | 15/01/2024 10:13 (8 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 250725 [DedeBIZ 6.3.0 Website Copyright Setting cross site scripting] |
|---|
| Punti | 18 |
|---|