ZHENFENG13/My-Blog

There is an xss vulnerability in src/main/java/com/site/blog/my/core/controller/admin/BlogController.java

N0boy-0 opened this issue · 0 comments

Articles published by the blog system can allow viewers to execute arbitrary javascript code.

xss0

The system did not encode the string submitted by the user, resulting in the execution of arbitrary javascript code.

xss1

xss2