| Название | http://www.mrcms.cn/ mrcms 3.1.3 Stored Cross-Site Scripting |
|---|
| Описание | The /admin/user/edit.do interface of mrcms_v3.1.3 has a storage XSS vulnerability, which can steal sensitive user information, tamper with page content, and spread malware for a long time, seriously threatening user privacy and website reputation. |
|---|
| Источник | ⚠️ https://github.com/bdkuzma/vuln/issues/1 |
|---|
| Пользователь | baihekuz (UID 84516) |
|---|
| Представление | 22.04.2025 10:36 (11 месяцы назад) |
|---|
| Модерация | 05.05.2025 14:14 (13 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 307399 [MRCMS 3.1.3 Edit User Page /admin/user/edit.do Имя пользователя межсайтовый скриптинг] |
|---|
| Баллы | 17 |
|---|