XSS Vulnerability

Open royblume opened this issue 1 year ago • 0 comments

Line 25 of msg.php is vulnerable to Cross Site Scripting (XSS), due to the "title" parameter being improperly sanitzed.

A proof-of-concept is: [DOMAIN]/msg.php?title=

Dec 24 '24 21:12 royblume