In page /verydows/index.php?m=api&c=stats&a=count where users' visiting are logged, we can modify the POST parameter "referrer" which will be shown without filtering to administrator.
As a result, hacker can construct a XSS payload to steal admin's cookies!
payload:
result:
The text was updated successfully, but these errors were encountered:
In page /verydows/index.php?m=api&c=stats&a=count where users' visiting are logged, we can modify the POST parameter "referrer" which will be shown without filtering to administrator.


As a result, hacker can construct a XSS payload to steal admin's cookies!
payload:
result:
The text was updated successfully, but these errors were encountered: