CVE-2021-43697

CVE-2021-43697

An unspecified version of Workerman-ThinkPHP-Redis is affected by a Cross Site Scripting (XSS) vulnerability. In file Controller.class.php, the exit function will terminate the script and print the message to the user. The message will contain $_GET{C(‘VAR_JSONP_HANDLER’)] then there is a XSS vulnerability.

Source: CVE-2021-43697

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다