제출 #458623: ruifang-tech Rebuild 3.8.5 Stored Cross Site Scripting정보

제목ruifang-tech Rebuild 3.8.5 Stored Cross Site Scripting
설명A Stored Cross-Site Scripting (XSS) vulnerability exists in Rebuild 3.8.5 through the project task comment attachment upload functionality. Attackers can upload a crafted SVG file containing malicious JavaScript. When a victim views the uploaded SVG, the embedded script is executed in the victim's browser.
원천⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/rebuild/StoredXSS-TaskCommentAttachments.md
사용자
 vastzero (UID 78767)
제출2024. 12. 07. PM 01:38 (2 연령 ago)
모더레이션2024. 12. 16. AM 09:47 (9 days later)
상태수락
VulDB 항목288534 [ruifang-tech Rebuild 3.8.5 Task Comment Attachment Upload 크로스 사이트 스크립팅]
포인트들17

Want to stay up to date on a daily basis?

Enable the mail alert feature now!