4 matches found
CVE-2022-25582
A stored cross-site scripting XSS vulnerability in the Column module of ClassCMS v2.5 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Articles field...
CVE-2022-25582
A stored cross-site scripting XSS vulnerability in the Column module of ClassCMS v2.5 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Articles field...
CVE-2022-25582
A stored cross-site scripting XSS vulnerability in the Column module of ClassCMS v2.5 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Articles field...
ClassCMS 跨站脚本漏洞
A cross-site scripting vulnerability exists in ClassCMS v2.5 and prior versions of ClassCMS, a simple, flexible, secure, and easily extensible content management system in China. The vulnerability stems from a lack of user-supplied data and output data validation filtering in the Add Articles fie...