Miaochiahao

**Name of the Vulnerable Software and Affected Versions** antSword versions prior to 2.1.0 **Description** The issue is related to self-XSS in the database configuration, which can lead to code execution. This is possible via files such as `modules/database/asp/index.js`, `modules/database/custom/index.js`, `modules/database/index.js`, or `modules/database/php/index.js`. **Recommendations** For versions prior to 2.1.0, update to version 2.1.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the database configuration to minimize the risk of exploitation.