Отправить #765929: 1024-lab SmartAdmin ≤3.29 Stored Cross-Site Scripting (XSS)Информация

Название	1024-lab SmartAdmin ≤3.29 Stored Cross-Site Scripting (XSS)
Описание	A Stored Cross-Site Scripting (XSS) vulnerability exists in the Help Documentation module of SmartAdmin v3.0 Enterprise Rapid Development Platform. Attackers can directly submit malicious HTML content containing JavaScript code through backend API interfaces, bypassing the frontend rich text editor’s filtering mechanism. When regular users view help documentation containing malicious content, the code executes in the victim’s browser.
Источник	⚠️ https://www.notion.so/SmartAdmin-Stored-Cross-Site-Scripting-XSS-in-HelpDoc-module-310ea92a3c418050852dc554e2b5b49b
Пользователь	din4 (UID 50867)
Представление	23.02.2026 16:48 (2 месяцы назад)
Модерация	07.03.2026 13:21 (12 days later)
Статус	принято
Запись VulDB	349664 [1024-lab/lab1024 SmartAdmin до 3.29 Help Documentation HelpDocAddForm.java межсайтовый скриптинг]
Баллы	17

Do you know our Splunk app?

Download it now for free!