Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbNull pointerEDB-ID:30356
HistoryDec 16, 2013 - 12:00 a.m.

Wallpaper Script 3.5.0082 - Persistent Cross-Site Scripting

2013-12-1600:00:00
null pointer
www.exploit-db.com
19

AI Score

7.4

Confidence

Low

JSON
[~] Exploit Title : Wallpaper Script Stored XSS Vulnerability
[~] D0rk Google : 
[~] Author : nullp0int3r ([email protected])
[~] Version : 3.5.0082
[~] Date : 2013-12-14
[~] Vendor Homepage: http://www.wallpaperscript.com/
[~] Test on : Windows


Exploitation:
1) Register and log on as a regular member
2) Click on "Add Wallpaper"
3) Write in the title field: </title><script>alert("XSS")</script>
4) Fill other fields and choose a photo and click on "Save"
5) Go to "My Wallpapers"
6) Select your uploaded photo

Thanks:
Enddo
Far3nh3it

Related

prion 1
nvd 1
cvelist 1
cve 1
prion
prion
Cross site scripting
2014-01-08 15:29:00
nvd
nvd
CVE-2013-7274
2014-01-08 15:29:56
cvelist
cvelist
CVE-2013-7274
2014-01-08 15:00:00
cve
cve
CVE-2013-7274
2014-01-08 15:29:56

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:30356
prion1nvd1cvelist1cve1