Submit #554695: WCMS 11 XSS vulnerabilityinfo

TitleWCMS 11 XSS vulnerability
DescriptionThe `filename` parameter of the `articleadmin/upload` interface in WCMS11 has an XSS vulnerability. Attackers can construct special JavaScript code to induce users to trigger the XSS vulnerability.
Source⚠️ https://github.com/IceFoxH/VULN/issues/17
User
 icefoxh (UID 82165)
Submission04/09/2025 11:52 (1 Year ago)
Moderation04/18/2025 16:09 (9 days later)
StatusDuplicate
VulDB entry302030 [WCMS 11 Article Publishing Page ?&CKEditor=container&CKEditorFuncNum=1 Upload unrestricted upload]
Points0

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!