You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Exploit with using "heading" attribute, we can custom HTML tag lead to inject img tag with onerror event, and use HTML encoding to bypass filter some special chars
PoC
The text was updated successfully, but these errors were encountered:
This vulnerability in
edit pagefunctionExploit with using "heading" attribute, we can custom HTML tag lead to inject
imgtag withonerrorevent, and useHTML encodingto bypass filter some special charsPoC
The text was updated successfully, but these errors were encountered: