XSS
Closed this issue · 0 comments
hieuminhnv commented
Describe the bug
XSS in function Posts
To Reproduce
Steps to reproduce the behavior:
- Login to CMS
- Click on 'Posts' >> 'New Entry' >> Image
- In Meta Data >> inject payload into Title
Screenshots
payload: "><img src="x" onerror=alert(String.fromCharCode(88,83,83));>
Desktop (please complete the following information):
- OS: All
- Browser : All
- Version: Last versiom