Skip to content

Minicms1.1.1 Exists storage xss

Jump to bottom
Num-Nine edited this page Oct 17, 2023 · 1 revision

1.Environment download address: https://codeload.github.com/bg5sbk/MiniCMS/zip/refs/tags/v1.11

2.Log in to the background page to go to the following URL

/mc-admin/conf.php

3.At the site address, enter: javascript:alert(1)

4.xss is triggered by clicking on my website at /mc-admin/head.php

image-20231011132304131

Clone this wiki locally