Отправить #756523: erzhongxmu JEEWMS <= 3.7 Reflected XSSИнформация

Название	erzhongxmu JEEWMS <= 3.7 Reflected XSS
Описание	### Summar Reflected XSS Vulnerability has been identified in [JEEWMS](https://gitee.com/erzhongxmu/JEEWMS) v3.7 which has the UEditor component, a third-party rich text editor, contains Reflected XSS vulnerability. ### Impact JEEWMS ≤ v3.7 ### Details Full Path: `src/main/webapp/plug-in/ueditor/jsp/getContent.jsp` Relative to Webroot: `/plug-in/ueditor/jsp/getContent.jsp` Access URL: `http://[target]:[port]/jeewms/plug-in/ueditor/jsp/getContent.jsp`
Источник	⚠️ https://www.notion.so/JEEWMS-Reflected-XSS-Vulnerability-in-UEditor-Module-304ea92a3c41806a97ffc9b707f2fbf0
Пользователь	din4 (UID 50867)
Представление	11.02.2026 17:13 (4 месяцы назад)
Модерация	23.02.2026 15:05 (12 days later)
Статус	принято
Запись VulDB	347383 [erzhongxmu JEEWMS до 3.7 UEditor getContent.jsp myEditor межсайтовый скриптинг]
Баллы	17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!