DolphinPHP User Management Page cross site scripting

A vulnerability was found in DolphinPHP up to 1.5.0 and classified as problematic. Affected by this issue is the User Management Page. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

在Web页面生成时对输入的转义处理不恰当(跨站脚本)

DolphinPHP 跨站脚本漏洞

DolphinPhp是一个基于 ThinkPhp 5.1.34 Lts 开发的一套开源 Php 快速开发框架。 DolphinPHP 1.5.0 及之前版本存在安全漏洞，该漏洞可导致跨站脚本攻击。

N/A

N/A