search

Codgic / codgic-web-legacy

:bug: A free, open-source Online Judge alternative. Coding Magic.
GNU General Public License v3.0
13 stars 1 forks source link

xss漏洞 #32

Closed CANGJINKONG closed 7 years ago

CANGJINKONG commented 7 years ago

https://cwoj.org/board.php?problem_id=1070%27%22()%26%25%3Cacx%3E%3CScRiPt%20%3EALERT(%27FUCKT123YH%27);%20%3C/ScRiPt%3E

ice1000 commented 7 years ago

看我发现了什么,URL里面有一段奇怪的FUCKT123YH 😂

codgician commented 7 years ago

修复代码已上传服务器,GitHub上随下一次PR提交。谢谢!