RSS   Vulnerabilities for 'Thinkphp-bjyblog'   RSS

2021-12-02
 
CVE-2021-43682

CWE-79
 

 
thinkphp-bjyblog (last update Jun 4 2021) is affected by a Cross Site Scripting (XSS) vulnerability in AdminBaseController.class.php. The exit function terminates the script and prints a message to the user that contains $_SERVER['HTTP_HOST'].

 


Copyright 2024, cxsecurity.com

 

Back to Top