Open fakerrr opened 5 years ago
1、Login the backstage http://127.0.0.1/admin/index.php
2、Go to System setting->site setting
3、add the following payload to the second textbox,and submit。 payload:site_domain=http://www.dilicms.com/" onmouseover="alert(1) And move your mouse on the second textbook ,then Stored-XSS triggered
1、Login the backstage http://127.0.0.1/admin/index.php
2、Go to System setting->site setting
3、add the following payload to the second textbox,and submit。 payload:site_domain=http://www.dilicms.com/" onmouseover="alert(1)
And move your mouse on the second textbook ,then Stored-XSS triggered