This repository has been archived by the owner on Dec 26, 2019. It is now read-only.
You can’t perform that action at this time.
You signed in with another tab or window. Reload to refresh your session.
You signed out in another tab or window. Reload to refresh your session.
Vulnerability file
App/Modules/Index/Action/SearchAction.class.php$put filters XSS attacks with the removeXSS function and the removeXSS method is defined in the
App/Common/common.phpfile:Filtered common tags, but still not perfect, you can use some rare events to trigger xss
POC
The text was updated successfully, but these errors were encountered: