# ADD connectioins Title Storage XSS
`/ari-adminer/includes/controllers/connections/class-ajax-save.php line 9`
GET the variable Connection
Follow the function save,`/air-adminer/includes/models/class-connection.php line 7`
there are some general processing in the process, and only judge whether it is empty.No filtering for xss
that data insert into database
## demo
payload in title
ADD connectioins Title Storage XSS
/ari-adminer/includes/controllers/connections/class-ajax-save.php line 9
GET the variable Connection
Follow the function save,/air-adminer/includes/models/class-connection.php line 7
there are some general processing in the process, and only judge whether it is empty.No filtering for xss
that data insert into database
demo
payload in title
京公网安备 11010502034610号
暂无评论