| 제목 | 南昌蓝智科技有限公司 Jspxcms 10.2.0 Cross-site scripting |
|---|
| 설명 | Jspxcms is a scalable, enterprise-class open source web content management system (CMS).
Jspxcms v10.2.0 has a cross-site scripting vulnerability due to unfiltered title and tag parameters in background survey selection, which can be exploited by an attacker to execute arbitrary Web scripts or HTML by injecting well-designed payloads. |
|---|
| 원천 | ⚠️ https://github.com/sweatxi/BugHub/blob/main/jspXCMS-%20Survey%20label.pdf |
|---|
| 사용자 | hexixi (UID 59932) |
|---|
| 제출 | 2024. 01. 14. AM 11:37 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 01. 19. AM 10:40 (5 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 251545 [Jspxcms 10.2.0 Survey Label 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 18 |
|---|