Easytest bulletin board management function of online learning platform does not filter special characters. After obtaining a user’s privilege, remote attackers can inject JavaScript and execute stored XSS attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
huaju easytest online learning test platform 1705 |