Security Advisory

CVE-2023-31862

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-19 00:00:00

Last updated 2025-01-21 19:39:55

Assigner mitre

State PUBLISHED

Description

jizhicms v2.4.6 is vulnerable to Cross Site Scripting (XSS). The content of the article published in the front end is only filtered in the front end, without being filtered in the background, which allows attackers to publish an article containing malicious JavaScript scripts by modifying the request package.

← Browse all CVEs View on cve.org ↗