Vigil@nce - CherryTree: Cross Site Scripting via Name Text Field, analyzed on 05/12/2022
February 2023 by Vigil@nce
An attacker can trigger a Cross Site Scripting of CherryTree, via Name Text Field, in order to run JavaScript code in the context of the web site.
Plus d'information sur : https://vigilance.fr/vulnerability/CherryTree-Cross-Site-Scripting-via-Name-Text-Field-40013