Advertisement






Photo Sharing Script Xss Vulnerability

CVE Category Price Severity
CVE-2021-12345 CWE-79 $500 High
Author Risk Exploitation Type Date
Anonymous High Remote 2018-03-09
CVSS EPSS EPSSP
Not available 0.04097 0.76142

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2018030084

Below is a copy:

Photo Sharing Script Xss Vulnerability
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1=-=-=-=-=-=-=-=-=-=-=-=-=-=-
| # Title  :  Photo Sharing Script Xss Vulnerability
| # Author :  indoushka
| # Vondor :  www.p30vel.ir
| # Dork   :  Copyright  2011 Photo Sharing Script Nulled By P30vel.ir Powered by Free PHP Script
===================================================================================================

Cross site scripting (verified) :

This vulnerability affects /upload/signup. 
Discovered by: Scripting (XSS.script). 
Attack details
URL encoded POST input password was set to 711%24%24w0rD" onmouseover=prompt(771818860) bad="
The input is reflected inside a tag parameter between double quotes.


Greetings to :=========================================================================================================================
                                                                                                                                      |
jericho * Larry W. Cashdollar * brutelogic* shadow_00715* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * ViRuS_Ra3cH * yasMouh   |            |
                                                                                                                                      |
=======================================================================================================================================

Copyright ©2024 Exploitalert.

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum