CVE-2024-41350

bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/imageUp.php...

CVE-2024-41350

bjyadmin commit a560fd5 is vulnerable to Cross Site Scripting XSS via Public/statics/umeditor123/php/imageUp.php...

CVE-2024-41350

CVE-2024-41350 affects the bjyadmin project (commit a560fd5). The vulnerability is a Cross-Site Scripting (XSS) flaw located in Public/statics/umeditor1_2_3/php/imageUp.php. Root cause involves the imageUp.php component used by bjyadmin, with the impact described as potential XSS (confidentiality...

PT-2024-29369 · Bjyadmin · Bjyadmin

Name of the Vulnerable Software and Affected Versions: bjyadmin version a560fd5 Description: The issue is related to Cross Site Scripting XSS in the bjyadmin commit a560fd5. This vulnerability comes from the imageUp.php file located in the Public/statics/umeditor1 2 3/php directory...

bjyadmin 安全漏洞

bjyadmin is an integrated application based on ThinkPHP extensions by the individual developer baijunyao. A security vulnerability exists in bjyadmin version a560fd5, which stems from the presence of a cross-site scripting XSS vulnerability via Public/statics/umeditor123/php/imageUp.php...

Cross-site scripting vulnerability in Catfish CMS 'imageUp.php' page

Catfish catfish CMS is open source PHP content management system. A cross-site scripting vulnerability exists in the Catfish CMS 'imageUp.php' page. The program fails to adequately filter user input, allowing an attacker to construct a malicious web page and trick users into parsing it to execute...

Cross-site scripting vulnerability in ThinkSNS social system

ThinkSNS is an open source social networking system under Wise. A cross-site scripting vulnerability exists in the ThinkSNS social system opensourceopen source version/addons/theme/stv1/static/js/um/php/imageUp.php page. The program fails to filter user-supplied input, allowing an attacker to...

cmseasy /imageUp.php xss vulnerability

No description provided by source...