| Titolo | rainrocka xinhu v2.6.3 Cross Site Scripting |
|---|
| Descrizione | A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in Xinhu RockOA v2.6.3, existing in the Callback parameter of /webmain/public/upload/tpl_upload.html. |
|---|
| Fonte | ⚠️ https://github.com/rainrocka/xinhu/issues/7 |
|---|
| Utente | jiashenghe (UID 39445) |
|---|
| Sottomissione | 11/07/2024 08:20 (2 anni fa) |
|---|
| Moderazione | 20/07/2024 08:23 (9 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 271994 [Xinhu RockOA 2.6.3 tpl_upload.html okla callback cross site scripting] |
|---|
| Punti | 16 |
|---|