Invia #543082: 长沙友点软件科技有限公司 YouDianCMS 9.5.21 Cross Site Scriptinginformazioni

Titolo长沙友点软件科技有限公司 YouDianCMS 9.5.21 Cross Site Scripting
DescrizioneYouDianCMS v9.5.21 has a reflected XSS vulnerability in App/Tpl/Member/Default/Order/index.html.Attackers can add malicious JavaScript scripts to the URL, and the server will concatenate the malicious scripts into the URL and return them to the browser, ultimately causing XSS vulnerabilities
Fonte⚠️ https://github.com/zonesec0/findcve/issues/6
Utente
 zonesec (UID 74980)
Sottomissione26/03/2025 07:14 (1 Anno fa)
Moderazione12/04/2025 13:48 (17 days later)
StatoAccettato
Voce VulDB304570 [YouDianCMS 9.5.21 index.html.Attackers OrderNumber cross site scripting]
Punti17

PrecedenteVisione D'ensembleIl prossimo

Do you know our Splunk app?

Download it now for free!