| Título | yourmaileyes MOOC V1.17 Improper Neutralization of Alternate XSS Syntax |
|---|
| Descrição | yourmaileyes MOOC version 1.17 contains a stored XSS vulnerability.In mooc/controller/MainController.java, a comment submission function was found that does not perform any validation on the incoming comments, posing a risk of XSS vulnerabilities.
Project address:https://github.com/yourmaileyes/MOOC |
|---|
| Fonte | ⚠️ https://github.com/yourmaileyes/MOOC/issues/12 |
|---|
| Utilizador | zzdzz (UID 93061) |
|---|
| Submissão | 12/12/2025 07h42 (há 5 meses) |
|---|
| Moderação | 27/12/2025 10h43 (15 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 338512 [yourmaileyes MOOC até 1.17 Submission MainController.java subreview Script de Site Cruzado] |
|---|
| Pontos | 18 |
|---|