Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

RiteCMS 3.0.0 - Reflected Cross Site Scripting (XSS)

🗓️ 18 Aug 2025 00:00:00Reported by Gurjot SinghType 
exploitdb
 exploitdb🔗 www.exploit-db.com👁 399 Views

RiteCMS 3.0.0 reflected XSS in main_menu/edit_section enables script; steals credentials and sessions; fix with input validation, CSP, update.

Related
Code
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for Cross-site Scripting in Ritecms
4 Mar 202403:37
githubexploit
Circl		CVE-2024-28623
13 Mar 202409:26
circl
CNNVD		RiteCMS 跨站脚本漏洞
13 Mar 202400:00
cnnvd
CNVD		RiteCMS Cross-Site Scripting Vulnerability (CNVD-2025-21552)
15 Mar 202400:00
cnvd
CVE		CVE-2024-28623
13 Mar 202400:00
cve
Cvelist		CVE-2024-28623
13 Mar 202400:00
cvelist
Nuclei		RiteCMS 3.0.0 - Cross-site Scripting
3 Jun 202606:04
nuclei
NVD		CVE-2024-28623
13 Mar 202408:15
nvd
Packet Storm		📄 RiteCMS 3.0.0 Cross Site Scripting
18 Aug 202500:00
packetstorm
Prion		Cross site scripting
13 Mar 202408:15
prion
Rows per page
# Exploit Title: RiteCMS 3.0.0 – Reflected Cross-Site Scripting (XSS)
# Google Dork: N/A
# Date: 2024-08-12
# Exploit Author: GURJOT SINGH
# Vendor Homepage: https://ritecms.com/
# Software Link: https://github.com/handylulu/RiteCMS/releases/download/V3.0.0/ritecms.v3.0.0.zip
# Version: <= 3.0.0
# Tested on: Ubuntu 22.04 LTS, PHP 8.1, Apache 2.4
# CVE: CVE-2024-28623

## Description:
A reflected Cross-Site Scripting (XSS) vulnerability exists in RiteCMS v3.0.0 within the `main_menu/edit_section` parameter. 
An attacker can inject arbitrary JavaScript code that will execute in the context of the victim's browser session.

## Impact:
- Theft of credentials or session tokens
- Phishing or malicious redirection
- Full control over the victim’s active browser session

## Proof of Concept (PoC):

Payload:
'"><svg/onload=confirm(/xsss/)>

Steps:
1. Log in or navigate to the vulnerable `main_menu/edit_section` functionality.
2. Inject the above payload into the vulnerable parameter.
3. Observe the execution of the injected JavaScript.

Video PoC:
https://github.com/GURJOTEXPERT/ritecms/blob/main/POC.mp4

Full write-up & repository:
https://github.com/GURJOTEXPERT/ritecms

## Mitigation:
- Implement strict input validation and output encoding.
- Enforce a Content Security Policy (CSP) to limit script execution.
- Update RiteCMS to a patched version when available.

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
18 Aug 2025 00:00Current
7.4High risk
Vulners AI Score7.4
CVSS 3.16.1
EPSS0.00455
SSVC
ritecmscross site scriptingmain menu sectioncredential theftsession takeoverinput validationcontent security policyupdate
399