CVE-2014-8069 YOOtheme Pagekit CMS 0.8.7 XSS漏洞

From PwnWiki
Revision as of 09:38, 8 April 2021 by Pwnwiki (talk | contribs) (Created page with "==INFO== Multiple cross-site scripting (XSS) vulnerabilities in YOOtheme Pagekit CMS 0.8.7 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP Refer...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

INFO

Multiple cross-site scripting (XSS) vulnerabilities in YOOtheme Pagekit CMS 0.8.7 allow remote attackers to inject arbitrary web script or HTML via the (1) HTTP Referer header to index.php/user or (2) PATH_INFO to index.php.


EXP

https://github.com/JustYoomoon/Exploit/blob/main/CVE-2014-8609.zip

Retrieved from "https://pwnwiki.com/index.php?title=CVE-2014-8069_YOOtheme_Pagekit_CMS_0.8.7_XSS漏洞&oldid=1158"