JiaSheng He comments

Repositories
Issues
Comments

Results 6 comments of


                                            JiaSheng He

KodExplorer 4.51 has a reflective XSS vulnerability

The vulnerability occurs on line 308 of config/i18n/en/main.php. The APP_HOST originating from the cookie was directly referenced into the page by% s without entity encoding.

Typecho v1.2.1 SSRF vulnerability

Hello, this vulnerability may not exist as an SSRF vulnerability. Based on your description, there may be attackers using the Pingback module to cause DoS or DDoS attacks on other...

VvvebJs 1.7.4 has an arbitrary file upload vulnerability

I'm glad this issue will be fixed in 1.7.5, thanks to VvvebJs team for maintaining the project!

VvvebJs 1.7.4 has a reflective XSS vulnerability

This means that this issue will be fixed in 1.7.5, thanks to these developers at Vvveb team for their attention!

Unauthenticated SQL Injection in SeaCMS v12.9

This is the vulnerability exploitation reference for CVE-2024-29275

Hardcoded JWT Secret in Saltbo/zpan 1.6.5

CVE-2025-7453