| Название | http://www.mrcms.cn/ mrcms 3.1.2 Stored Cross-Site Scripting |
|---|
| Описание | The /admin/chip/add.do interface of mrcms_v3.1.2 has a storage XSS vulnerability, which can steal sensitive user information, tamper with page content, 和 spread malware for a long time, seriously threatening user privacy and website reputation. |
|---|
| Источник | ⚠️ https://github.com/bdkuzma/vuln/issues/7 |
|---|
| Пользователь | baihekuz (UID 84516) |
|---|
| Представление | 22.04.2025 11:25 (12 месяцы назад) |
|---|
| Модерация | 05.05.2025 16:55 (13 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 307427 [MRCMS 3.1.2 Add Fragment Page /admin/chip/add.do межсайтовый скриптинг] |
|---|
| Баллы | 17 |
|---|