| CVE编号 | CVE-2025-2123 |
|---|---|
| 发布日期 | 2025-03-09T15:00:12.269Z |
| 更新日期 | 2025-03-10T15:35:51.889Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | n/a |
| 受影响的产品 | GeSHi |
| 描述 | A vulnerability, which was classified as problematic, has been found in GeSHi up to 1.0.9.1. Affected by this issue is the function get_var of the file /contrib/cssgen.php of the component CSS Handler. The manipulation of the argument default-styles/keywords-1/keywords-2/keywords-3/keywords-4/comments leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. |
参考链接:
