Submit #224899: flusity-CMS menu_id in posts.php_ XSS (Cross Site Scripting) exists for the place parameterinfo

Titleflusity-CMS menu_id in posts.php_ XSS (Cross Site Scripting) exists for the place parameter
Descriptionflusity-CMS menu_id in posts.php_ XSS (Cross Site Scripting) exists for the place parameter. echo "<script>loadPostAddForm ($menu_id);</script>"; Users can control the incoming parameter menu_ ID, resulting in an xss vulnerability
Source⚠️ https://github.com/flusity/flusity-CMS/issues/3
User
 zihe (UID 56943)
Submission10/24/2023 12:42 (3 years ago)
Moderation10/26/2023 20:14 (2 days later)
StatusAccepted
VulDB entry243642 [flusity CMS core/tools/posts.php loadPostAddForm menu_id cross site scripting]
Points17

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!