3 6 0 Forum stored xss can be introduced into the virus hung it-vulnerability warning-the black bar safety net

ID MYHACK58:62201339431
Type myhack58
Reporter 佚名
Modified 2013-06-29T00:00:00


1 vulnerability location: 3 6 0 Forum any plate, post, reply in the rich text editor.

2 Use code:!

3 vulnerability hazards: pass to kill 3 6 0 all Forum sections. Due to China's current IE6 users is fairly large, the most recent statistics for the 2 1. 3 per cent. So the harm is pretty large, so the hazard level is high!



Repair solutions:

Filtration under javascript.