emlog<=pro-1.2.2 Stored Cross-Site Scripting(XSS)
Description
The system Client doesn't properly sanitise POST parameter, which result into a Stored Cross-Site Scripting(XSS).
Vendor Homepage
https://www.emlog.net/
https://github.com/emlog/emlog
Author
xiahao@webray.com.cn inc
Proof of Concept
1,Register your account on the website and sign in
2,Add articles and write attack code, and then submit
<script>alert(123);</script>
3,The super administrator will trigger the attack code when auditing the article
