Cross site scripting

2018-04-2215:29:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.0%

JSON

Discuz! DiscuzX through X3.4 has stored XSS via the portal.php?mod=portalcp&ac=article URI, related to mishandling of IMG elements associated with remote images.

CPENameOperatorVersion
discuzxeq<= x3.4

CPE	Name	Operator	Version
	discuzx	eq	<= x3.4

References

laworigin.github.io/2018/04/22/Discuz-x-portal-Stored-XSS/