| Название | ruifang-tech Rebuild 3.8.5 Cross Site Scripting |
|---|
| Описание | A Stored Cross-Site Scripting (XSS) vulnerability exists in Rebuild 3.8.5 within the project task comments functionality. Attackers can exploit this vulnerability by injecting malicious JavaScript or HTML payloads into task comments. The payload is executed whenever any project group members views an affected task comment. |
|---|
| Источник | ⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/rebuild/StoredXSS-TaskComments.md |
|---|
| Пользователь | vastzero (UID 78767) |
|---|
| Представление | 07.12.2024 13:36 (2 лет назад) |
|---|
| Модерация | 16.12.2024 09:47 (9 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 288533 [ruifang-tech Rebuild 3.8.5 Project Task Comment межсайтовый скриптинг] |
|---|
| Баллы | 18 |
|---|