| 제목 | Htmly Authenticated Stored Cross-Site Scripting(XSS) |
|---|
| 설명 | HTMLy is an open source Databaseless Blogging Platform or Flat-File Blog prioritizes simplicity and speed written in PHP. HTMLy can be referred to as Flat-File CMS either since it will also manage your content.You do not need to use a VPS to run HTMLy, shared hosting or even free hosting should work as long as the host supports at least PHP 5.3.Htmly CMS does not filter the content correctly at the "edit profile" module, resulting in the generation of stored XSS.Add payload at the title of edit profile module (click the Save), We can see the alert. |
|---|
| 원천 | ⚠️ https://github.com/liaojia-99/project/tree/main/htmly |
|---|
| 사용자 | joinia (UID 24916) |
|---|
| 제출 | 2022. 03. 16. AM 07:31 (4 연령 ago) |
|---|
| 모더레이션 | 2022. 03. 16. AM 07:34 (3 minutes later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 195203 [htmly 5.3 Edit Profile 제목 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 20 |
|---|