| Titolo | Fanli2012 native-php-cms 1.0 Storage XSS |
|---|
| Descrizione | In sysconfig_doedit.php, the input content is not filtered, resulting in storage XSS. Attackers can cooperate with unauthorized access to directly insert storage XSS into the background |
|---|
| Fonte | ⚠️ https://github.com/Fanli2012/native-php-cms/issues/7 |
|---|
| Utente | LVZC (UID 74910) |
|---|
| Sottomissione | 06/01/2025 07:19 (1 Anno fa) |
|---|
| Moderazione | 15/01/2025 13:44 (9 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 291930 [Fanli2012 native-php-cms 1.0 sysconfig_doedit.php Informazioni cross site scripting] |
|---|
| Punti | 16 |
|---|