TVRemotePlus
TVRemotePlus copied to clipboard
PHP / JavaScript 製のテレビのリモート視聴ソフト(いわゆるロケフリ)
Results
1
TVRemotePlus issues
Sort by
recently updated
recently updated
newest added
Recently, our team found a reflected cross-site scripting (XSS) vulnerability The vulnerability logic is present in the file: https://github.com/tsukumijima/TVRemotePlus/blob/master/htdocs/settings.php#L1290 ![image](https://github.com/tsukumijima/TVRemotePlus/assets/131662463/380a6aac-5298-49a1-881d-05f2949af320) The `echo` directly outputs the parameter `$_POST['state']` without any sanitization....