CVE-2018-5249

CVE-2018-5249

Cross-site scripting (XSS) vulnerability in Shaarli before 0.8.5 and 0.9.x before 0.9.3 allows remote attackers to inject arbitrary code via the login form’s username field (aka the login parameter to the ban_canLogin function in index.php).

Source: CVE-2018-5249

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다