Submit #548978: https://gitee.com/xujiangfei/admintwo admintwo 1.0 Stored Cross-Site Scriptinginfo

Titlehttps://gitee.com/xujiangfei/admintwo admintwo 1.0 Stored Cross-Site Scripting
DescriptionThe name field of the /ztree/insertTree route in the admintwo 1.0 version is vulnerable to Stored Cross-Site Scripting (XSS) attack.
Source⚠️ https://github.com/caigo8/CVE-md/blob/main/admintwo/XSS3.md
User
 Caigo (UID 81287)
Submission04/02/2025 04:36 (1 Year ago)
Moderation04/04/2025 09:35 (2 days later)
StatusAccepted
VulDB entry303323 [xujiangfei admintwo 1.0 /ztree/insertTree Name cross site scripting]
Points15

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!