CMSuno 1.7 Cross Site Scripting

CVE Category Price Severity
CVE-2021-36654 CWE-79 $500 High
Author Risk Exploitation Type Date
Unknown High Remote 2021-08-06
CVSS:4.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L 0.02192 0.50148

CVSS vector description

Our sensors found this exploit at:

Below is a copy:

CMSuno 1.7 Cross Site Scripting
# Exploit Title: CMSuno 1.7 - 'tgo' Stored Cross-Site Scripting (XSS) (Authenticated)
# Date: 03-08-2021
# Exploit Author: splint3rsec
# Vendor Homepage:
# Software Link:
# Affected Version(s): CMSuno 1.7 (and prior)
# CVE : CVE-2021-36654

CMSuno version 1.7 and prior is vulnerable to a stored cross-site scripting.

The attacker must be authenticated to exploit the vulnerability.

The payload injection is done while updating the template's image filename, vulnerable parameter is *tgo*

Steps to reproduce:

1. Go to /uno.php and click on *plugins*
2. Click on *Logo*
3. Choose a random picture in your files repo, click on save and intercept the request
4. Edit the POST request to /uno/template/uno1/uno1.php by modifying the tgo parameter's value to ")}</style><script>VULN JS CODE HERE</script>
5. Forward the request and click on *publish*
6. Click on *See the website*
7. XSS

Copyright ©2024 Exploitalert.

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum