uhome-estate.com Cross Site Scripting vulnerability OBB-1401892

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

uhome 设计接口缺陷 通篇xss 和一处存储型xss

简要描述： uhome 设计接口缺陷 通篇xss 和一处存储型xss 详细说明： 我下载了集成包: UCenter1.5.1/UCHome2.0/Discuz!7.2 集成安装包 直接看代码： admincpdoing.php: ifsubmitcheck'batchsubmit' includeonceSROOT.'./source/functiondelete.php'; if!empty$POST'ids' && deletedoings$POST'ids' cpmessage'dosuccess', $POST'mpurl'; else...