Submeter #756527: erzhongxmu JEEWMS ≤3.7 Reflected XSSinformação

Títuloerzhongxmu JEEWMS ≤3.7 Reflected XSS
Descrição# Summury A **reflected cross-site scripting (XSS)** vulnerability has been discovered in JEEWMS v3.7 in the `JeecgListDemoController` module. The vulnerability allows attackers to inject malicious JavaScript through the `name` parameter, which is then reflected in the response without proper sanitization, leading to execution of arbitrary JavaScript code in the victim’s browser context. **Authentication**: Yes **Exploitable**: Remote
Fonte⚠️ https://www.notion.so/JEEWMS-Stored-Cross-Site-Scripting-XSS-in-SysModule-304ea92a3c418099bed7f1e0bca12d83
Utilizador
 din4 (UID 50867)
Submissão11/02/2026 17h24 (há 4 meses)
Moderação23/02/2026 15h05 (12 days later)
EstadoAceite
Entrada VulDB347384 [erzhongxmu JEEWMS até 3.7 JeecgListDemoController.java doAdd Nome Script de Site Cruzado]
Pontos17

VoltarVisão GeralPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!