GHSA-VPWQ-6CP4-FFQC Stored Cross-site Scripting in ShowDoc

ShowDoc prior to version 2.10.4 is vulnerable to stored cross-site scripting viva axd and cshtml file upload...

showdoc跨站脚本漏洞

showdoc is an open source tool for IT teams to share documents online. showdoc versions prior to v2.10.4 are vulnerable to file uploads, which stem from the lack of effective detection of .cshtml and .axd file extensions in the application's file upload functionality. An attacker could exploit th...