CVE-2018-20367


12/22/2018

CVE-2018-20367

The “mall some commodity details: commodity consultation” component in WSTMart 2.0.8_181212 has stored XSS via the consultContent parameter, as demonstrated by the index.php/home/goodsconsult/add.html URI.

References: 
https://github.com/wstmall/wstmart/issues/1



Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *