Advertisement






Bureau of Transportation Statistics - HTML Injection

CVE Category Price Severity
N/A CWE-79 N/A High
Author Risk Exploitation Type Date
Unknown High Remote 2021-03-31
CPE
cpe:cpe:/a:bureau_of_transportation_statistics:html_injection
CVSS EPSS EPSSP
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 0.02192 0.50148

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2021030201

Below is a copy:

Bureau of Transportation Statistics - HTML Injection
What's up crew, on fleek?

Website: https://www.bts.gov/
Hacker: uromulou

Proof of Concept 

1 . Go to website
2 . In 'Search' put your HTML code, my is "<p>by uromulou!</p>"
3 . and READY!

Example: https://search.usa.gov/search?utf8=%E2%9C%93&affiliate=dot-bts&query=%3Cp%3Eby+uromulou%21%3C%2Fp%3E

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.