Open fakerrr opened 5 years ago
1、Login the backstage http://127.0.0.1/admin/index.php
2、Go to System setting->site setting
3、add the following payload to the third textbox,and submit。 payload:site_logo=images/logo.gif" onmouseover="alert(1) And move your mouse on the third textbook ,then Stored-XSS triggered
1、Login the backstage http://127.0.0.1/admin/index.php
2、Go to System setting->site setting
3、add the following payload to the third textbox,and submit。 payload:site_logo=images/logo.gif" onmouseover="alert(1)
And move your mouse on the third textbook ,then Stored-XSS triggered