漏洞描述
Django-Helpdesk是一个 Django 应用程序。。用于管理内部服务台票证。 django-helpdesk存在跨站脚本漏洞,该漏洞源于django-helpdesk在Web页面生成过程中缺少对于用户输入的有效过滤与转义。
django-helpdesk 跨站脚本漏洞
PoC代码
暂无相关漏洞推荐
- Django 未授权 SQL注入漏洞
- Django 需授权 SQL注入漏洞
- POC CVE-2022-34265: Django - SQL injection
- POC CVE-2017-12794: Django Debug Page - Cross-Site Scripting
- POC CVE-2018-14574: Django - Open Redirect
- POC CVE-2020-9402: Django SQL Injection
- POC django-framework-exceptions: Django Framework Exceptions
- POC django-secret-key: Django Secret Key Exposure
- POC django-debug-exposure: Django Debug Exposure
- POC django-debug-config-enabled: Django Debug Configuration Enabled
- POC uvdesk-helpdesk-installer: UVDesk Helpdesk Installation Page - Exposure
- POC servicenow-helpdesk-credential: ServiceNow Helpdesk Credential Exposure
- POC django-debug-enabled: Django Debug mode enabled