Lucene search
Scgajge1214941381-B669-4756-94FC-CCE172472F8BHistoryJul 22, 2023 - 5:24 a.m.
Stored XSS in title
2023-07-2205:24:39
scgajge12
www.huntr.dev
13
stored xss
admin screen
item title
executed script
0.0004 Low
EPSS
Percentile
14.2%
Description
There is Stored XSS in the item title of the menu on the administrator screen.
Proof of Concept
Step 1. Log in to the admin screen and select Add New Item in Menu.
Step 2. Specify the following Payload for the item title and save it.
Step 3. Once saved, any script can be executed on the administrator screen.
Payload
<img src>
Request
POST /admin/menu/item_add/1/40 HTTP/2
Host: localhost
...
-----------------------------270651214445377498288823999
Content-Disposition: form-data; name="title"
<img src>
-----------------------------270651214445377498288823999
...
PoC Video
https://drive.google.com/file/d/1DjT6hbPBXpIs2pbrZ1EZZluZDOSDjeMk/view?usp=sharing
Related
cve
cve
CVE-2023-4187
2023-08-05 18:15:18
cvelist
cvelist
CVE-2023-4187 Cross-site Scripting (XSS) - Stored in instantsoft/icms2
2023-08-05 17:17:59
prion
prion
Cross site scripting
2023-08-05 18:15:00
osv
osv
CVE-2023-4187
2023-08-05 18:15:18
nvd
nvd
CVE-2023-4187
2023-08-05 18:15:18