Bomaos shop has stored xss vulnerabilitiesBomaos shop has many stored xss vulnerabilities

[Zacarx]

Hi, I want to report some stored xss vulnerability.

1. “/admin”->"商品管理"->"分类管理"->"添加分类"

2. “/admin”->"商品管理"->"添加商品"

3. “/admin”->"内容管理"->“首页轮播”->"添加轮播图”

This means that if hackers obtain editing privileges for these functions (such as providing the account and password of editors), the user's personal information is likely to be attacked