Описание
Foxlor cross-site scripting (XSS) vulnerability
Multiple cross-site scripting (XSS) vulnerabilities in the Customer Add module of Foxlor v0.10.16 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the name, firstname, or username input fields.
Пакеты
Наименование
froxlor/froxlor
composer
Затронутые версииВерсия исправления
= 0.10.16
Отсутствует
Связанные уязвимости
CVSS3: 5.4
nvd
больше 4 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in the Customer Add module of Foxlor v0.10.16 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the name, firstname, or username input fields.