提交 #773039: PHPEMS V11.0 Stored Cross-Site Scripting信息

标题PHPEMS V11.0 Stored Cross-Site Scripting
描述PHPEMS online mock exam system is developed based on PHP and MySQL, supports various question types and display methods, and is the first PHP online mock exam system in China to support both open-ended questions and integrated manual/automatic scoring. This system is permanently open source and free. However, PHPEMS online mock exam system contains an XSS vulnerability, which attackers can exploit to obtain sensitive information such as user cookies.
来源⚠️ https://github.com/shufenshui/CVE/issues/1
用户
 shufenshui (UID 96148)
提交2026-03-05 17時13分 (4 月前)
管理2026-03-11 10時17分 (6 days later)
状态已接受
VulDB条目350368 [PHPEMS 11.0 /index.php?ask=app-ask askcontent 跨网站脚本]
积分20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!