xiuno-pro icon indicating copy to clipboard operation
xiuno-pro copied to clipboard

Published 20 hours ago verified publisher icon iqismart

Website background XSS_Site introduction

Open crow821 opened this issue 2 years ago • 0 comments

After installing xino-pro4 After 1.2, there is a storage XSS on the left side of the bottom of the background setting

Then in http://127.0.0.1/xiuno/admin/ Continue to log in to the administrator background and http://127.0.0.1/xiuno/admin/?setting -base. Htm setting page custom setting information: in http://127.0.0.1/xiuno/admin/?setting -base. Htm site introduction module, modified to XSS Code: image

Modify code as: visit http://127.0.0.1/xiuno/ image

XSS vulnerability exists at this time

crow821 avatar May 12 '22 08:05 crow821