Joyplus cms 1.6.0 管理员账户新增CSRF漏洞
PWNWIK.COM , EXP <html> <body> <script>history.pushState('', '', '/')</script> <form action=" ...
标签:script
以下是与标签“script”相关联的文章
-
-
Gadget Works Online Ordering System 1.0 XSS漏洞
免费、自由、人人(PwnWiki.Com)可编辑的漏洞库 , XSS # Exploit Title: Gadget Works Online Ordering System 1.0 - 'Category' Persistent Cros ...
-
Finecms v5.4 管理员密码修改CSRF漏洞
免费、自由、人人(PwnWiki.Com)可编辑的漏洞库 , EXP <html> <body> <script>history.pushState('', '', '/')</script> ...
-
Finecms v5.4 CSRF漏洞
免费、自由、人人(PwnWiki.Com)可编辑的漏洞库 , 漏洞描述 恶意攻击者可以精心伪造一个html页面诱骗已登录的管理用户点击,从而更改管理员账户密码。 EXP <html> <body> <scrip ...
-
Customer Relationship Management (CRM) System 1.0 – ‘Category’ XSS漏洞
免费、自由、人人可编辑的漏洞库--pwnwiki.com , XSS # Exploit Title: Customer Relationship Management (CRM) System 1.0 - 'Category' Persi ...
-
Cobub Razor 0.7.2 跨站请求伪造漏洞
PWNWIK.COM==免费、自由、人人可编辑的漏洞库 , POC <body> <script>alert(document.cookie)</script> <form action="http ...
-
Cobub Razor 0.7.2 越权增加管理员账户漏洞
PWNWIK.COM , POC <html> <body> <script>history.pushState('', '', '/')</script> <form action=" ...
-
Chrome 插件 Vue.js devtools UXSS
PWNWIK.COM==免费、自由、人人可编辑的漏洞库 , XSS1 <script> setInterval(() => { window.postMessage({ vueDetected: true, vueToas ...
-
CatfishCMS 后台CSRF漏洞
PWNWIK.COM==免费、自由、人人可编辑的漏洞库 , Payload <html> <!-- CSRF PoC - generated by Burp Suite Professional --> <bo ...
-
CVE-2021-3318 DzzOffice 2.02.1 XSS漏洞
PWNWIK.COM , XSS # Exploit Title: DzzOffice 2.02.1 - 'Multiple' Cross-Site Scripting (XSS) # Author: @nu11secur1ty # Tes ...