| CVE编号 | CVE-2025-28937 |
|---|---|
| 发布日期 | 2025-03-11T21:01:15.978Z |
| 更新日期 | 2025-03-12T13:48:18.203Z |
| 状态 | PUBLISHED |
| 受影响的供应商 | lavacode |
| 受影响的产品 | Lava Ajax Search |
| 描述 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in lavacode Lava Ajax Search allows Stored XSS. This issue affects Lava Ajax Search: from n/a through 1.1.9. |
参考链接:
