CVE-2024-35110
5.5MEDIUMA reflected XSS vulnerability has been found in YzmCMS 7.1. The vulnerability exists in yzmphp/core/class/application.class.php: when logged-in users access a malicious link, their cookies can be capt
Veröffentlicht: 5/17/2024Aktualisiert: 6/10/2025
Beschreibung
A reflected XSS vulnerability has been found in YzmCMS 7.1. The vulnerability exists in yzmphp/core/class/application.class.php: when logged-in users access a malicious link, their cookies can be captured by an attacker.
KI-AnalyseKI-gestützt
Betroffene Produkte
yzmcmsyzmcms
7.1
Referenzen
- https://github.com/yzmcms/yzmcms/issues/68ExploitIssue TrackingVendor Advisory
- https://github.com/yzmcms/yzmcms/issues/68ExploitIssue TrackingVendor Advisory