Submeter #35906: automad<=1.10.9 Stored Cross-Site Scripting(XSS)informação

Títuloautomad<=1.10.9 Stored Cross-Site Scripting(XSS)
DescriçãoThe system Client doesn't properly sanitise POST parameter, which result into a Stored Cross-Site Scripting(XSS). 1,After installing the program, log in to the background system, modify the website title and inject attack code, and then submit 2,Visiting the home page of the website will trigger the code https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/automad%3C%3D1.10.9%20Stored%20Cross-Site%20Scripting(XSS).md
Fonte⚠️ https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/automad%3C%3D1.10.9%20Stored%20Cross-Site%20Scripting(XSS).md
Utilizador
 webray.com.cn (UID 24778)
Submissão29/04/2022 11h33 (há 4 anos)
Moderação29/04/2022 14h06 (3 hours later)
EstadoAceite
Entrada VulDB198706 [automad até 1.10.9 Dashboard Título Script de Site Cruzado]
Pontos20

VoltarVisão GeralPróximo

Do you need the next level of professionalism?

Upgrade your account now!