CVE-2022-46438

Description

A cross-site scripting (XSS) vulnerability in the /admin/article_category.php component of DouPHP v1.7 20221118 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the description parameter.

Related CPE's

adoucodouphp1.7_20221118*******

References

https://www.yuque.com/ni4n/yesa2m/fem0pgtvgogay3lv

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io