4 matches found
CVE-2025-15416
A vulnerability was found in xnx3 wangmarket up to 6.4. This affects an unknown function of the file /siteVar/save.do of the component Add Global Variable Handler. The manipulation of the argument Remark/Variable Value results in cross site scripting. The attack can be executed remotely. The...
CVE-2025-15416 xnx3 wangmarket Add Global Variable save.do cross site scripting
A vulnerability was found in xnx3 wangmarket up to 6.4. This affects an unknown function of the file /siteVar/save.do of the component Add Global Variable Handler. The manipulation of the argument Remark/Variable Value results in cross site scripting. The attack can be executed remotely. The...
PT-2026-1032
Name of the Vulnerable Software and Affected Versions xnx3 wangmarket versions up to 6.4 Description A cross-site scripting issue exists in xnx3 wangmarket. The issue is located in the Add Global Variable Handler component, specifically within the file /siteVar/save.do. Manipulation of the...
wangmarket 代码注入漏洞
wangmarket is a privatized deploy your own SAAS cloud builder system for xnx3 individual developers in China. A code injection vulnerability exists in wangmarket 6.4 and earlier versions, which stems from the incorrect operation of the parameter Remark/Variable Value in the file /siteVar/save.do,...