| عنوان | emlog<=pro-1.2.2 Stored Cross-Site Scripting(XSS) |
|---|
| الوصف | The system Client doesn't properly sanitise POST parameter, which result into a Stored Cross-Site Scripting(XSS).
1,Register your account on the website and sign in
2,Add articles and write attack code, and then submit
3,The super administrator will trigger the attack code when auditing the article
https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/emlog%3C=pro-1.2.2%20Stored%20Cross-Site%20Scripting(XSS).md |
|---|
| المصدر | ⚠️ https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/emlog%3C=pro-1.2.2%20Stored%20Cross-Site%20Scripting(XSS).md |
|---|
| المستخدم | webray.com.cn (UID 24778) |
|---|
| ارسال | 29/04/2022 08:57 AM (4 سنوات منذ) |
|---|
| الاعتدال | 29/04/2022 09:28 AM (31 minutes later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 198705 [Emlog Pro حتى 1.2.2 POST Parameter البرمجة عبر المواقع] |
|---|
| النقاط | 20 |
|---|