Discuz! X 跨站脚本漏洞

Discuz! X is a forum platform. A cross-site scripting vulnerability exists in version 3.4-20200818 and prior versions of Discuz! X. The vulnerability stems from the fact that incorrect manipulation of the uchidden parameter can lead to cross-site scripting...

PT-2024-10839 · Discuzx · Discuzx

Name of the Vulnerable Software and Affected Versions: DiscuzX versions up to 3.4-20200818 Description: A problematic issue was found in the function show next step of the file upload/install/include/install function.php. The manipulation of the argument uchidden leads to cross-site scripting. It...