| Title | rainrocka xinhu v2.6.3 Cross Site Scripting |
|---|
| Description | A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in Xinhu RockOA v2.6.3, existing in the Callback parameter of /webmain/public/upload/tpl_upload.html. |
|---|
| Source | ⚠️ https://github.com/rainrocka/xinhu/issues/7 |
|---|
| User | jiashenghe (UID 39445) |
|---|
| Submission | 07/11/2024 08:20 (2 years ago) |
|---|
| Moderation | 07/20/2024 08:23 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 271994 [Xinhu RockOA 2.6.3 tpl_upload.html okla callback cross site scripting] |
|---|
| Points | 16 |
|---|