Submit #647590: ibuyucms ibuyucms_v2.6.3 v2.6.3 Doubled Character XSS Manipulationsinfo

Titleibuyucms ibuyucms_v2.6.3 v2.6.3 Doubled Character XSS Manipulations
DescriptionAn attacker can exploit this vulnerability to steal sensitive user information, such as session cookies, login credentials, or personal data. Additionally, the attacker can use this vulnerability to perform other malicious actions, such as redirecting users to phishing pages, delivering malware payloads, or implanting malicious programs.
Source⚠️ https://github.com/Upgradeextension/ibuyu/blob/main/README.md
User
 komorebi (UID 40027)
Submission09/04/2025 09:05 (10 months ago)
Moderation09/14/2025 12:27 (10 days later)
StatusAccepted
VulDB entry323868 [IbuyuCMS up to 2.6.3 Add Article Page /admin/article.php?a=mod Title cross site scripting]
Points18

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!