Galette 跨站脚本漏洞
Galette is a membership management web application built for nonprofit organizations and released under the GPLv3. A cross-site scripting vulnerability exists in versions of Galette prior to 0.9.6. An attacker could use this vulnerability to launch a cross-site scripting attack via the preference...