CVE-2024-35110
5.5MEDIUMA reflected XSS vulnerability has been found in YzmCMS 7.1. The vulnerability exists in yzmphp/core/class/application.class.php: when logged-in users access a malicious link, their cookies can be capt
게시됨: 5/17/2024업데이트됨: 6/10/2025
설명
A reflected XSS vulnerability has been found in YzmCMS 7.1. The vulnerability exists in yzmphp/core/class/application.class.php: when logged-in users access a malicious link, their cookies can be captured by an attacker.
AI 분석AI 기반
영향받는 제품
yzmcmsyzmcms
7.1
참조
- https://github.com/yzmcms/yzmcms/issues/68ExploitIssue TrackingVendor Advisory
- https://github.com/yzmcms/yzmcms/issues/68ExploitIssue TrackingVendor Advisory