| Title | formtools.org formtools 3.1.1 xss |
|---|
| Description | Download Source Code:https://github.com/formtools/core
Step:Log in to the admin account and visit the "/admin/forms/add/step2.php?submission_type=direct". In the "Form URL" field, use the following POC: '"><script>alert("xss");</script>'. After clicking Next, refresh the page to complete the stored XSS attack. |
|---|
| Source | ⚠️ https://github.com/DeepMountains/Mirage/blob/main/CVE-2.md |
|---|
| User | Dee.Mirage (UID 71702) |
|---|
| Submission | 07/10/2024 16:33 (2 years ago) |
|---|
| Moderation | 07/20/2024 08:11 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 271989 [formtools.org Form Tools 3.1.1 step2.php?submission_type=direct Form URL cross site scripting] |
|---|
| Points | 19 |
|---|