Submeter #765929: 1024-lab SmartAdmin ≤3.29 Stored Cross-Site Scripting (XSS)informação

Título1024-lab SmartAdmin ≤3.29 Stored Cross-Site Scripting (XSS)
DescriçãoA Stored Cross-Site Scripting (XSS) vulnerability exists in the Help Documentation module of SmartAdmin v3.0 Enterprise Rapid Development Platform. Attackers can directly submit malicious HTML content containing JavaScript code through backend API interfaces, bypassing the frontend rich text editor’s filtering mechanism. When regular users view help documentation containing malicious content, the code executes in the victim’s browser.
Fonte⚠️ https://www.notion.so/SmartAdmin-Stored-Cross-Site-Scripting-XSS-in-HelpDoc-module-310ea92a3c418050852dc554e2b5b49b
Utilizador
 din4 (UID 50867)
Submissão23/02/2026 16h48 (há 2 meses)
Moderação07/03/2026 13h21 (12 days later)
EstadoAceite
Entrada VulDB349664 [1024-lab/lab1024 SmartAdmin até 3.29 Help Documentation HelpDocAddForm.java Script de Site Cruzado]
Pontos17

VoltarVisão GeralPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!