Submit #651886: nuz007 smsboom master CWE-79info

Titlenuz007 smsboom master CWE-79
Descriptiond.php:25 ```php <b>正在为该号<?php echo $_GET['hm'];?>进行云呼中...</b> <p>本页为多开模式,自动刷新轰炸</p> ``` CWE: CWE-79-Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE Description: The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Source⚠️ https://github.com/nuz007/smsboom/blob/main/d.php#L25
User
 dev03303 (UID 85336)
Submission09/10/2025 09:21 (8 months ago)
Moderation09/25/2025 07:57 (15 days later)
StatusAccepted
VulDB entry325815 [nuz007 smsboom up to 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674 d.php hm cross site scripting]
Points20

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!