Описание
Stored Cross-site Scripting in ShowDoc
ShowDoc prior to version 2.10.4 is vulnerable to stored cross-site scripting viva axd and cshtml file upload.
Пакеты
Наименование
showdoc/showdoc
composer
Затронутые версииВерсия исправления
< 2.10.4
2.10.4
Связанные уязвимости
CVSS3: 5.4
nvd
почти 4 года назад
Stored XSS viva axd and cshtml file upload in star7th/showdoc in GitHub repository star7th/showdoc prior to v2.10.4.