Invia #735773: https://gitee.com/technical-laohu/mpay mpay v1.2.4 Stored Cross-Site Scriptinginformazioni

Titolohttps://gitee.com/technical-laohu/mpay mpay v1.2.4 Stored Cross-Site Scripting
DescrizioneIn v1.2.4 of mpay, there is a storage XSS vulnerability in the username modification function in the background,which can steal sensitive user information, tamper with page content, 和 spread malware for a long time, seriously threatening user privacy and website reputation.
Fonte⚠️ https://github.com/bdkuzma/vuln/issues/16
Utente
 baihekuz (UID 84516)
Sottomissione10/01/2026 05:14 (5 mesi fa)
Moderazione18/01/2026 14:59 (8 days later)
StatoAccettato
Voce VulDB341744 [technical-laohu mpay fino a 1.2.4 User Center Nickname cross site scripting]
Punti18

PrecedenteVisione D'ensembleIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!