You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi, I would like to report Cross Site Scripting vulnerability in ESPCMS P8.
POC:
1.Login to administrator panel.
2.Open below URL in browser which supports flash.
url:http://www.espcms.com/install_pack/espcms_admin/index.php
eg:
payload:<script>alert('xss')</script>
change title parameter
Fix:
Filter the title parameter
The text was updated successfully, but these errors were encountered:
Hi, I would like to report Cross Site Scripting vulnerability in ESPCMS P8.
POC:
1.Login to administrator panel.
2.Open below URL in browser which supports flash.
url:http://www.espcms.com/install_pack/espcms_admin/index.php
eg:
payload:<script>alert('xss')</script>
change title parameter
Fix:
Filter the title parameter
The text was updated successfully, but these errors were encountered: