Описание
Moderate severity vulnerability that affects org.b3log:symphony
An issue was discovered in b3log Symphony (aka Sym) before v3.4.7. XSS exists via the userIntro and userNickname fields to processor/SettingsProcessor.java.
Пакеты
Наименование
org.b3log:symphony
maven
Затронутые версииВерсия исправления
< 3.4.7
3.4.7
Связанные уязвимости
CVSS3: 6.1
nvd
почти 7 лет назад
An issue was discovered in b3log Symphony (aka Sym) before v3.4.7. XSS exists via the userIntro and userNickname fields to processor/SettingsProcessor.java.