CNNVD-202601-3284 Information

CNNVD ID

CNNVD-202601-3284

Related CVE

CVE-2025-40644

• CNNVD Published: 2026-01-20

Description (Chinese)

Riftzilla QRGen是Riftzilla个人开发者的一款二维码生成与管理系统。 Riftzilla QRGen存在跨站脚本漏洞，该漏洞源于/article.php中的id参数存在反射型跨站脚本，可能导致在受害者浏览器中执行JavaScript代码。

Description (English)

Riftzilla QRGen is a two-dimensional generation and management system for Riftzilla personal developers. Riftzilla QRGen has a cross-site script loophole that stems from the reflective cross-site script of the id parameters in /article.php, which may lead to the implementation of JavaScript code in the victim browser.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

个人开发者

Published

2026-01-20

Last Modified

2026-02-24

References

https://www.incibe.es/en/incibe-cert/notices/aviso/reflected-cross-site-scripting-xss-qrgens-riftzilla