New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Reflected XSS Vulnerability exists in the file of DedeCMS V5.7 SP2 #10

Open
Ppsoft1990 opened this Issue Oct 24, 2018 · 2 comments

Comments

Projects
None yet
2 participants
@Ppsoft1990

Ppsoft1990 commented Oct 24, 2018

Reflected XSS Vulnerability exists in the file of DedeCMS V5.7 SP2
Reflected XSS exists in DedeCMS 5.7 SP2 via the /member/myfriend.php ftype parameter.
Reflected XSS Vulnerability exists in the file of DedeCMS V5.docx

Phink

@attritionorg

This comment has been minimized.

attritionorg commented Oct 28, 2018

As an FYI @Ppsoft1990, you can include text and images in GitHub tickets. It would be a lot easier if you posted all of the info in the ticket, instead of linking to a Word document, which is considered to be a security risk.

@Ppsoft1990

This comment has been minimized.

Ppsoft1990 commented Oct 28, 2018

@attritionorg Thanks for your advice.I'll try it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment