Hi, I would like to report Cross Site Scripting vulnerability in latest release.
Description:
Cross-site scripting (XSS) vulnerability in edit.php
Steps To Reproduce:
1.create new page
url: http://localhost/admin/edit.php
title input payload <img src=1 onerror=alert(document.cookie)>
2、clike the link
3、xss cookie
Hi, I would like to report Cross Site Scripting vulnerability in latest release.
Description:
Cross-site scripting (XSS) vulnerability in edit.php
Steps To Reproduce:




1.create new page
url: http://localhost/admin/edit.php
title input payload
<img src=1 onerror=alert(document.cookie)>2、clike the link
3、xss cookie
Release Info:
3.4.0.9
author by xijun.liao@dbappsecurity.com.cn
The text was updated successfully, but these errors were encountered: