Submeter #239326: CSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSSinformação

TítuloCSZCMS(https://www.cszcms.com/) CSZCMS V1.3.0 Stored XSS
DescriçãoIn the administration background, when performing website configuration, the Additional Meta Tag section is not strictly filtered, and the running user inserts svg tags to execute code, resulting in a stored XSS vulnerability
Fonte⚠️ https://github.com/t34t/CVE/blob/main/CSZCMS/0-Store-XSS-Vulnerability-in-cszcmsV1.3.0.md
Utilizador
 testvul (UID 58141)
Submissão16/11/2023 10h05 (há 3 anos)
Moderação26/11/2023 08h45 (10 days later)
EstadoAceite
Entrada VulDB246129 [CSZCMS 1.3.0 Site Settings Page /admin/settings/ Additional Meta Tag Script de Site Cruzado]
Pontos16

VoltarVisão GeralPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!