Leanote 2.7.0 is vulnerable to Cross... CVE-2021-43721

4.3 AV AC AU C I A
发布: 2022-03-28
修订: 2024-11-21

Leanote 2.7.0 is vulnerable to Cross Site Scripting (XSS) in the markdown type note. This leads to remote code execution with payload : <video src=x onerror=(function(){require('child_process').exec('calc');})();>

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息