| 제목 | 1024-lab SmartAdmin ≤3.29 Stored Cross-Site Scripting (XSS) |
|---|
| 설명 | A Stored Cross-Site Scripting (XSS) vulnerability exists in the Notice module of SmartAdmin([https://gitee.com/lab1024/smart-admin](https://gitee.com/lab1024/smart-admin)) v3.0, an enterprise-level rapid development platform. Attackers can inject malicious JavaScript code through the rich text editor, which will be executed in the browser of other users when they view the malicious notice.
SmartAdmin https://gitee.com/lab1024/smart-admin
SmartAdmin https://github.com/1024-lab/smart-admin |
|---|
| 원천 | ⚠️ https://www.notion.so/SmartAdmin-Stored-Cross-Site-Scripting-XSS-in-Notice-module-310ea92a3c41806ebcf0e5f82bf222da |
|---|
| 사용자 | din4 (UID 50867) |
|---|
| 제출 | 2026. 02. 23. PM 03:01 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 03. 07. PM 01:21 (12 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 349663 [1024-lab/lab1024 SmartAdmin 까지 3.29 Notice notice-form-drawer.vue 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 17 |
|---|