제출 #641127: mrvautin https://github.com/mrvautin/expressCart <=1.0.0 Frame Injection정보

제목mrvautin https://github.com/mrvautin/expressCart <=1.0.0 Frame Injection
설명User-controlled img src allows loading untrusted frames, enabling internal service probe & info gathering, content manipulation within trusted contexts.
원천⚠️ https://github.com/mrvautin/expressCart/issues/288
사용자
 ZAST.AI (UID 87884)
제출2025. 08. 25. PM 12:43 (9 개월 ago)
모더레이션2025. 09. 01. PM 01:45 (7 days later)
상태수락
VulDB 항목322112 [mrvautin expressCart 까지 b31302f4e99c3293bd742c6d076a721e168118b0 Edit Product Page /admin/product/edit/ 권한 상승]
포인트들15

이전개요다음

Do you want to use VulDB in your project?

Use the official API to access entries easily!