Easy File Sharing Web Server 6.8 - Persistent Cross-Site Scripting

2014-12-27T00:00:00
ID EXPLOITPACK:B56C852B502176FF856DB628DA640ACF
Type exploitpack
Reporter Sick Psycko
Modified 2014-12-27T00:00:00

Description

Easy File Sharing Web Server 6.8 - Persistent Cross-Site Scripting

                                        
                                            Exploit Title: Easy File Sharing Webserver =>6.8 Persistent XSS
Date: 12/26/14
Exploit Author: SickPsycko
Vendor Homepage: http://www.sharing-file.com/
Version:6.8
Tested on: Windows 7 32bit

The exploit is within the username field.
So to exploit this vulnerability, One must place the payload into the
specified field when registering.

http://i.imgur.com/bibu81C.png
Once logged in. User will be greeted with such.