{"id": "EDB-ID:37533", "vendorId": null, "type": "exploitdb", "bulletinFamily": "exploit", "title": "Orchard CMS 1.7.3/1.8.2/1.9.0 - Persistent Cross-Site Scripting", "description": "", "published": "2015-07-08T00:00:00", "modified": "2015-07-08T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://www.exploit-db.com/exploits/37533", "reporter": "Paris Zoumpouloglou", "references": [], "cvelist": ["2015-5520"], "immutableFields": [], "lastseen": "2022-08-16T08:23:35", "viewCount": 14, "enchantments": {"dependencies": {}, "score": {"value": 0.3, "vector": "NONE"}, "backreferences": {"references": [{"type": "cve", "idList": ["CVE-2015-5520"]}]}, "exploitation": null, "vulnersScore": 0.3}, "_state": {"dependencies": 1661190352, "score": 1661184847, "epss": 1678803316}, "_internal": {"score_hash": "0a81dd2f78684e8ac1e61b1e5aac915b"}, "sourceHref": "https://www.exploit-db.com/download/37533", "sourceData": "<html><title>You are being redirected...</title>\n<noscript>Javascript is required. Please enable javascript before you are allowed to see this page.</noscript>\n<script>var s={},u,c,U,r,i,l=0,a,e=eval,w=String.fromCharCode,sucuri_cloudproxy_js='',S='ZD1TdHJpbmcuZnJvbUNoYXJDb2RlKDQ5KSArICIyIiArICAnJyArIApTdHJpbmcuZnJvbUNoYXJDb2RlKDB4MzIpICsgICcnICsgCiI1c3VjdXIiLmNoYXJBdCgwKSsnN2U4NScuc3Vic3RyKDMsIDEpICsiYiIuc2xpY2UoMCwxKSArICAnJyArIAoiMyIgKyAiMnNlYyIuc3Vic3RyKDAsMSkgKyAiM3N1Ii5zbGljZSgwLDEpICsgJzInICsgICAnJyArIAonYicgKyAgJz8wJy5zbGljZSgxLDIpKyI3Ii5zbGljZSgwLDEpICsgICcnICsnJytTdHJpbmcuZnJvbUNoYXJDb2RlKDB4MzcpICsgImYiICsgICcnICsgCiIzc3VjdXIiLmNoYXJBdCgwKSsgJycgKyI4c2VjIi5zdWJzdHIoMCwxKSArICIiICsnSW8yZScuc3Vic3RyKDMsIDEpICsnYycgKyAgImJzdWN1ciIuY2hhckF0KDApKyAnJyArJycrImJzZWMiLnN1YnN0cigwLDEpICsgJ2YnICsgICc5JyArICAiIiArU3RyaW5nLmZyb21DaGFyQ29kZSg1NikgKyAiZnN1Y3VyIi5jaGFyQXQoMCkrU3RyaW5nLmZyb21DaGFyQ29kZSgxMDEpICsgICcnICtTdHJpbmcuZnJvbUNoYXJDb2RlKDB4MzEpICsgICcnICsnJysndTRkJy5jaGFyQXQoMikrIiIgKyIzc3VjdXIiLmNoYXJBdCgwKSsgJycgKycnKyIyIi5zbGljZSgwLDEpICsgJ1sxJy5zbGljZSgxLDIpKyIiICsiOSIgKyAiIiArJyc7ZG9jdW1lbnQuY29va2llPSdzJysndXMnLmNoYXJBdCgwKSsnYycrJ3VzdScuY2hhckF0KDApICsncnN1Y3VyaScuY2hhckF0KDApICsgJ2knKycnKydzdV8nLmNoYXJBdCgyKSsnY3N1Jy5jaGFyQXQoMCkgKydsc3UnLmNoYXJBdCgwKSArJ3N1Y3VyaW8nLmNoYXJBdCg2KSsnc3VjdXJ1Jy5jaGFyQXQoNSkgKyAnc2QnLmNoYXJBdCgxKSsncCcuY2hhckF0KDApKydycycuY2hhckF0KDApKydvcycuY2hhckF0KDApKyd4c3UnLmNoYXJBdCgwKSArJ3knKydzdV8nLmNoYXJBdCgyKSsnc3V1Jy5jaGFyQXQoMikrJ3VzdScuY2hhckF0KDApICsnaScrJ2QnKycnKydfJysnc3VjdXJkJy5jaGFyQXQoNSkgKyAnc3VjJy5jaGFyQXQoMikrJzknLmNoYXJBdCgwKSsnNCcrJ2UnKydmJysnZXN1Y3UnLmNoYXJBdCgwKSAgKycxc3VjdScuY2hhckF0KDApICArJzUnKycnKyI9IiArIGQgKyAnO3BhdGg9LzttYXgtYWdlPTg2NDAwJzsgbG9jYXRpb24ucmVsb2FkKCk7';L=S.length;U=0;r='';var A='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/';for(u=0;u<64;u++){s[A.charAt(u)]=u;}for(i=0;i<L;i++){c=s[S.charAt(i)];U=(U<<6)+c;l+=6;while(l>=8){((a=(U>>>(l-=8))&0xff)||(i<(L-2)))&&(r+=w(a));}}e(r);</script></html>\n", "osvdbidlist": ["124202"], "exploitType": "webapps", "verified": false}
{}
Orchard CMS 1.7.3/1.8.2/1.9.0 - Persistent Cross-Site Scripting