| 제목 | 南昌蓝智科技有限公司 Jspxcms 10.2.0 Cross-site scripting |
|---|
| 설명 | Jspxcms is a scalable, enterprise-class open source web content management system (CMS).
Jspxcms v10.2.0 has a cross-site scripting vulnerability, which is caused by background modification of document title parameters without filtering, and an attacker can exploit this vulnerability to execute arbitrary Web scripts or HTML by injecting well-designed payloads. |
|---|
| 원천 | ⚠️ https://github.com/sweatxi/BugHub/blob/main/Jspxcms.pdf |
|---|
| 사용자 | hexixi (UID 59932) |
|---|
| 제출 | 2024. 01. 13. AM 08:38 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 01. 16. PM 04:25 (3 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 250837 [Jspxcms 10.2.0 Document Management Page InfoController.java 제목 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 18 |
|---|