| Titel | emlog<=pro-1.2.2 Stored Cross-Site Scripting(XSS) |
|---|
| Beschreibung | The system Client doesn't properly sanitise POST parameter, which result into a Stored Cross-Site Scripting(XSS).
1,Register your account on the website and sign in
2,Add articles and write attack code, and then submit
3,The super administrator will trigger the attack code when auditing the article
https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/emlog%3C=pro-1.2.2%20Stored%20Cross-Site%20Scripting(XSS).md |
|---|
| Quelle | ⚠️ https://github.com/xiahao90/CVEproject/blob/main/xiahao.webray.com.cn/emlog%3C=pro-1.2.2%20Stored%20Cross-Site%20Scripting(XSS).md |
|---|
| Benutzer | webray.com.cn (UID 24778) |
|---|
| Einreichung | 29.04.2022 08:57 (vor 4 Jahren) |
|---|
| Moderieren | 29.04.2022 09:28 (31 minutes later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 198705 [Emlog Pro bis 1.2.2 POST Parameter Cross Site Scripting] |
|---|
| Punkte | 20 |
|---|