SPIP before 4.1.14 and 4.2.x before... CVE-2024-23659

- AV AC AU C I A
发布: 2024-01-19
修订: 2024-01-25

SPIP before 4.1.14 and 4.2.x before 4.2.8 allows XSS via the name of an uploaded file. This is related to javascript/bigup.js and javascript/bigup.utils.js.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有2条受影响产品信息