This repository has been archived by the owner on Mar 6, 2022. It is now read-only.
There have Storage type XSS vulnerability that can excute javascript #2
Comments
|
Thanks, for taking out time to run this program, this project was developed when I first started learning PHP, that is about two years ago, but you can send a pull request that contains a fix to this issue, would really appreciate |
|
I am also learning this knowledge. I can just practise, Lift a finger. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Here is a XSS vulnerability.
No login required.
Just need to open an article and comment on it.
For example,this article:
#######################################################################
Add comments here---->
#######################################################################
When I click Submit,it will pop up XSS---->
#######################################################################
Here is the page source code---->
And opening comments in the background will also pop up XSS.
The text was updated successfully, but these errors were encountered: