EXP-Tools / threat-broadcast

威胁情报播报
https://exp-tools.github.io/threat-broadcast/
GNU General Public License v3.0
374 stars 179 forks source link

err report #134

Open ewqdsadwqe opened 1 year ago

ewqdsadwqe commented 1 year ago

这个项目对于爬取到的内容没有做编码处理,公开页面上被 xss 了,看了下是因为一个 csrf 漏洞的漏洞详情