CNNVD-202512-5699 Information
CNNVD ID
CNNVD-202512-5699
Related CVE
- CNNVD Published: 2025-12-31
Description (Chinese)
vue3-element-admin是有来开源组织开源的一个后台管理前端模板。 vue3-element-admin 3.4.0及之前版本存在安全漏洞,该漏洞源于对文件src/views/system/notice/index.vue的错误操作,可能导致跨站脚本攻击。
Description (English)
vue3-election-admin is a backstage management frontend template for open-source organizations. There is a security loophole in vue3-election-admin 3.4.0 and earlier versions, which stems from a mishandling of document src/views/system/notice/index.vue, which could lead to a cross-site script attack.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-12-31
Last Modified
2026-02-24
References
https://github.com/AnalogyC0de/public_exp/blob/main/archives/vue3-element-admin/report.md https://github.com/AnalogyC0de/public_exp/blob/main/archives/vue3-element-admin/report.md#proof-of-concept https://vuldb.com/?ctiid.339080 https://vuldb.com/?id.339080 https://vuldb.com/?submit.718345
Share on: