CVE-2024-35110
5.5MEDIUMA reflected XSS vulnerability has been found in YzmCMS 7.1. The vulnerability exists in yzmphp/core/class/application.class.php: when logged-in users access a malicious link, their cookies can be capt
Опубликовано: 5/17/2024Обновлено: 6/10/2025
Описание
A reflected XSS vulnerability has been found in YzmCMS 7.1. The vulnerability exists in yzmphp/core/class/application.class.php: when logged-in users access a malicious link, their cookies can be captured by an attacker.
ИИ-АнализНа базе ИИ
Затронутые продукты
yzmcmsyzmcms
7.1
Ссылки
- https://github.com/yzmcms/yzmcms/issues/68ExploitIssue TrackingVendor Advisory
- https://github.com/yzmcms/yzmcms/issues/68ExploitIssue TrackingVendor Advisory