fast-poster v2.15.0 is vulnerable to... CVE-2023-37658

- AV AC AU C I A
发布: 2024-04-28
修订: 2024-04-28

fast-poster v2.15.0 is vulnerable to Cross Site Scripting (XSS). File upload check binary of img, but without strictly check file suffix at /server/fast.py -> ApiUploadHandler.post causes stored XSS

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息