We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? # to your account
Software Link :https://github.com/magicblack/maccms10 Website : https://www.maccms.plus/ Vulnerable version v2024.1000.4040 download address :https://github.com/magicblack/maccms10/releases/tag/V2024.1000.4040 After the installation is complete, log in as admin, open the page
Add a scheduled task.
Here you can fill in malicious JavaScript code to cause stored xss
Causes stored XSS to steal sensitive information of logged-in users
The second malicious code pops up
<script>alert(document.cookie)</script> <script>alert(1)</script>
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Software Link :https://github.com/magicblack/maccms10
Website : https://www.maccms.plus/
Vulnerable version v2024.1000.4040 download address :https://github.com/magicblack/maccms10/releases/tag/V2024.1000.4040
After the installation is complete, log in as admin, open the page
Add a scheduled task.
Here you can fill in malicious JavaScript code to cause stored xss
Causes stored XSS to steal sensitive information of logged-in users
The second malicious code pops up
POC:
The text was updated successfully, but these errors were encountered: