提交 #651887: nuz007 smsboom master CWE-79信息

标题nuz007 smsboom master CWE-79
描述 dy.php:20 ```php <b>正在为该号<?php echo $_GET['hm'];?>进行云呼中...</b> <p>本页为多开非挂机模式,将自动刷新一直轰炸</p> ``` CWE: CWE-79-Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE Description: The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
来源⚠️ https://github.com/nuz007/smsboom/blob/main/dy.php#L20
用户
 dev03303 (UID 85336)
提交2025-09-10 09時23分 (8 月前)
管理2025-09-25 07時57分 (15 days later)
状态已接受
VulDB条目325816 [nuz007 smsboom 直到 01b2f35bbbc23f3e0f60f38ca0e3d1b286f8d674 dy.php hm 跨网站脚本]
积分20

上一步一览下一步

Want to know what is going to be exploited?

We predict KEV entries!