2 matches found
Discuz! NT 3.6 user-space cross-site vulnerabilities and fixes-vulnerability warning-the black bar safety net
Affected version: Discuz! NT 3.6 Vulnerability description: Discuz! NT3. 6 version of the user space log edit not user-submitted data do security filtering, and can lead to insertion of malicious code. Attacker to exploit the vulnerability, you may get a normal user the Cookie of sensitive data,...
Discuz!NT 3.6邀请跨站漏洞
比较鸡肋的一个跨站漏洞,需要用户登陆后才能利用。 Discuz!NT 3.6 等待官方升级补丁 http://nt.discuz.net/invite.aspx?usersaid=%3Ciframe%20src=%22http://www.zhu.cm%22...