| Title | http://www.mrcms.cn/ mrcms 3.1.2 Stored Cross-Site Scripting |
|---|
| Description | The /admin/chip/add.do interface of mrcms_v3.1.2 has a storage XSS vulnerability, which can steal sensitive user information, tamper with page content, 和 spread malware for a long time, seriously threatening user privacy and website reputation. |
|---|
| Source | ⚠️ https://github.com/bdkuzma/vuln/issues/7 |
|---|
| User | baihekuz (UID 84516) |
|---|
| Submission | 04/22/2025 11:25 (11 months ago) |
|---|
| Moderation | 05/05/2025 16:55 (13 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 307427 [MRCMS 3.1.2 Add Fragment Page /admin/chip/add.do cross site scripting] |
|---|
| Points | 17 |
|---|