CVE-2024-41351
CVE-2024-41351 affects bjyadmin (ThinkPHP-based) via Cross-Site Scripting in Public/statics/umeditor1_2_3/php/getContent.php. Root cause is an XSS vulnerability in that endpoint. CVSS: Network attack vector, Low confidentiality/integrity impact, high user interaction required, scope changed (per ...