Submit #372000: ClassCMS v4.5 Cross Site Scripting
| Title | ClassCMS v4.5 Cross Site Scripting |
|---|---|
| Description | ClassCMS 版本 4.5 存在一个反射的 XSS 漏洞,允许攻击者通过将精心构建的有效负载注入订单字段来执行任何 Web 脚本或 HTML。 |
| Source | ⚠️ https:/ |
| User | jiashenghe (UID 39445) |
| Submission | 07/10/2024 05:36 (2 years ago) |
| Moderation | 07/20/2024 07:57 (10 days later) |
| Status | Accepted |
| VulDB entry | 271987 [ClassCMS 4.5 ?action=home&do=shop:index&keyword=&kind=all order cross site scripting] |
| Points | 15 |