제출 #634156: mtons https://gitee.com/mtons/mblog <=3.5.0 Stored XSS정보

제목mtons https://gitee.com/mtons/mblog <=3.5.0 Stored XSS
설명The /admin/options/update endpoint is used for setting site information and related configurations, all user-controlled input parameters have no security checks, and output pages in multiple places on the frontend and admin panel have no encoding processing, thus creating stored XSS vulnerabilities.
원천⚠️ https://gitee.com/mtons/mblog/issues/ICPMMF
사용자
 ZAST.AI (UID 87884)
제출2025. 08. 14. AM 06:02 (11 개월 ago)
모더레이션2025. 08. 25. AM 11:40 (11 days later)
상태수락
VulDB 항목321271 [mtons mblog 까지 3.5.0 /admin/options/update input 크로스 사이트 스크립팅]
포인트들17

Do you need the next level of professionalism?

Upgrade your account now!