| Title | https://github.com/liuwy-dlsdys/zhglxt zhglxt system v4.7.7 cross-site scripting |
|---|
| Description | A vulnerability was found in zhglxt system System 4.7.7. It has been classified as problematic. The manipulation of the argument description with the input <script>alert(document.cookie)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
vulnerability report URL:https://github.com/biantaibao/zhglxt_xss/blob/main/xss.md
zhglxt system url:https://github.com/liuwy-dlsdys/zhglxt
|
|---|
| Source | ⚠️ https://github.com/biantaibao/zhglxt_xss/blob/main/xss.md |
|---|
| User | biantaibao (UID 45650) |
|---|
| Submission | 01/12/2024 16:24 (2 years ago) |
|---|
| Moderation | 01/19/2024 08:30 (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 251543 [liuwy-dlsdys zhglxt 4.7.7 HTTP POST Request /oa/notify/edit notifyTitle cross site scripting] |
|---|
| Points | 20 |
|---|