b3log Symphony (aka Sym) 2.2.0 allows an XSS attack by sending a private letter with a certain /article URI, and a second private letter with a modified title.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symphony project symphony 2.2.0 |