Skip to content
This repository was archived by the owner on Aug 8, 2025. It is now read-only.
This repository was archived by the owner on Aug 8, 2025. It is now read-only.

XSS Vulnerability #8

Description

@royblume

Line 25 of msg.php is vulnerable to Cross Site Scripting (XSS), due to the "title" parameter being improperly sanitzed.

A proof-of-concept is: [DOMAIN]/msg.php?title=<script>alert('XSS')</script>

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions