### 简要描述:
JEECMS会员中心存在XSS
### 详细说明:
会员中心
[<img src="https://images.seebug.org/upload/201306/111629008cba02507d390112811bf9c86a859f2f.jpg" alt="QQ截图20130611162048.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201306/111629008cba02507d390112811bf9c86a859f2f.jpg)
直接插入XSS存储型代码
[<img src="https://images.seebug.org/upload/201306/111630248edd04d130a126d8cecae6f5ef8e7316.jpg" alt="4.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201306/111630248edd04d130a126d8cecae6f5ef8e7316.jpg)
后台触发!
### 漏洞证明:
[<img src="https://images.seebug.org/upload/201306/11163106c52eaac8489ec606ad84b8496c9cf0ed.jpg" alt="2.jpg" width="600" onerror="javascript:errimg(this);">](https://images.seebug.org/upload/201306/11163106c52eaac8489ec606ad84b8496c9cf0ed.jpg)
京公网安备 11010502034610号
暂无评论