Submeter #557236: https://github.com/withstars/Blog-System Blog-System 1.0 Stored Cross-Site Scriptinginformação

Títulohttps://github.com/withstars/Blog-System Blog-System 1.0 Stored Cross-Site Scripting
DescriçãoThe Blog-System version 1.0 /api/comment/add interface has a stored cross-site scripting (XSS) vulnerability that allows an attacker to inject malicious JavaScript code via the content parameter. This code is stored in the system and executed when other users visit the relevant page
Fonte⚠️ https://github.com/caigo8/CVE-md/blob/main/Blog-System/XSS2.md
Utilizador
 Caigosec (UID 84067)
Submissão13/04/2025 07h26 (há 1 Ano)
Moderação26/04/2025 09h03 (13 days later)
EstadoAceite
Entrada VulDB306298 [withstars Books-Management-System 1.0 Comment /api/comment/add content Script de Site Cruzado]
Pontos17

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!