cms后台多个功能点xss漏洞(CMS backend multiple function point XSS holes)
AnotherVol opened this issue · comments
AnotherVol commented
1.后台多个功能点xss漏洞
1.The background multiple function point XSS holes
1)产品类别 Product category
添加产品类别处 Add product categories
保存后 After the save
2)文章类别 Category
保存后
3)在线客服和访客代码处
3) online customer service and visitors in the code
2.修复建议 Repair advice
1.建议对后台用户输入进行控制。
- The Suggestions to control the background user input.
Wayne commented
在线客服和统计代码本就是Javascript