tianti 2.3 has stored XSS in the userlist... CVE-2018-19089

3.5 AV AC AU C I A
发布: 2018-11-07
修订: 2018-12-11

tianti 2.3 has stored XSS in the userlist module via the tianti-module-admin/user/ajax/save_role name parameter, which is mishandled in tianti-module-admin\src\main\webapp\WEB-INF\views\user\user_list.jsp.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息