| 标题 | ruifang-tech Rebuild 3.8.5 Cross Site Scripting |
|---|
| 描述 | A Stored Cross-Site Scripting (XSS) vulnerability exists in Rebuild 3.8.5 within the project task comments functionality. Attackers can exploit this vulnerability by injecting malicious JavaScript or HTML payloads into task comments. The payload is executed whenever any project group members views an affected task comment. |
|---|
| 来源 | ⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/rebuild/StoredXSS-TaskComments.md |
|---|
| 用户 | vastzero (UID 78767) |
|---|
| 提交 | 2024-12-07 13時36分 (2 年前) |
|---|
| 管理 | 2024-12-16 09時47分 (9 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 288533 [ruifang-tech Rebuild 3.8.5 Project Task Comment 跨网站脚本] |
|---|
| 积分 | 18 |
|---|