Enviar #651885: wangchenyi1996 chat_forum master CWE-79información

Títulowangchenyi1996 chat_forum master CWE-79
DescripciónIn file q.php ```php <?php foreach(range(1,$_GET['num']) as $_num){?> <dd><img src="<?php echo $_GET['path'].$_num?>.png" title="贴图<?php echo $_GET['path'].$_num?>.png" ``` CWE: CWE-79-Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE Description: The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Fuente⚠️ https://github.com/wangchenyi1996/chat_forum/blob/master/q.php#L31
Usuario
 dev03301 (UID 88717)
Sumisión2025-09-10 09:15 (hace 8 meses)
Moderación2025-09-17 16:33 (7 days later)
EstadoAceptado
Entrada de VulDB324675 [wangchenyi1996 chat_forum hasta 80bdb92f5b460d36cab36e530a2c618acef5afd2 /q.php path secuencias de comandos en sitios cruzados]
Puntos20

AnteriorVisión De ConjuntoPróximo

Do you know our Splunk app?

Download it now for free!