제출 #708997: sunkaifei FlyCms <=1.0.0 XSS정보

제목sunkaifei FlyCms <=1.0.0 XSS
설명In the latest version of FlyCMS, the endpoint /login does not encode user-controllable parameters when outputting them on the current page, resulting in Reflected XSS. This allows attackers to launch XSS attacks against users. such as stealing credencials.
원천⚠️ https://github.com/sunkaifei/FlyCms/issues/16
사용자
 ZAST.AI (UID 87884)
제출2025. 12. 08. AM 08:50 (5 개월 ago)
모더레이션2025. 12. 25. PM 01:54 (17 days later)
상태수락
VulDB 항목338423 [sunkaifei FlyCMS 까지 abbaa5a8daefb146ad4d61027035026b052cb414 User Login UserController.java userLogin redirectUrl 크로스 사이트 스크립팅]
포인트들17

이전개요다음

Might our Artificial Intelligence support you?

Check our Alexa App!