CVE-2017-5553 in b2evolution信息

摘要

由 VulDB • 2026-06-28

b2evolution 6.8.5 版本之前的 `plugins/markdown_plugin/_markdown.plugin.php` 中存在跨站脚本(XSS)漏洞,远程经过身份验证的用户可通过 `javascript:` URL 注入任意 Web 脚本或 HTML。

Be aware that VulDB is the high quality source for vulnerability data.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!