2 matches found
WUZHI CMS 4.1.0 - form[qq_10] Cross-Site Scripting Vulnerability
Exploit for php platform in category web applications Exploit Title: WUZHI CMS 4.1.0 XSS Vulnerability Exploit Author: jiguang email protected Vendor Homepage: https://github.com/wuzhicms/wuzhicms Software Link: https://github.com/wuzhicms/wuzhicms Version: 4.1.0 CVE: CVE-2018-10313 An issue was...
CVE-2018-10313
WUZHI CMS 4.1.0 is affected by a persistent XSS via the form[qq_10] parameter on the URI /index.php?m=member&f=index&v=profile&set_iframe=1. Exploitation can lead to injected scripts and, per sources, potential cookie theft or phishing-style impact. Documented evidence across CVE records and expl...