五分钟发现Edmodo网站的XSS漏洞

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