Lucene search
Ahmedvienna39715AAF-E798-4C60-97C4-45F4F2CD5C61HistoryMar 10, 2023 - 8:42 a.m.
stored XSS Protection bypass by changing the User Profile Name
2023-03-1008:42:50
ahmedvienna
www.huntr.dev
11
stored xss
bypass
user profile name
protection
bug bounty
0.001 Low
EPSS
Percentile
34.7%
Hello,
I was able to bypass the XSS Vulnerability i reported before by using this Payload.
Lets try first a normal XSS Payload which will not work
for example -> <script>alert(‘1’)</script> -> NOT WOKRING :)
lets try the bypass payload
1’"><img/src/onerror=.1|alertAHMED-Vienna>
XSS Payload fired and its stored -> let me show you
stored XSS :)
-> it is a stored XSS.
Lets see.
Thank you for watching :)
Related
cvelist
cvelist
CVE-2023-1875 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2023-04-22 00:00:00
nvd
nvd
CVE-2023-1875
2023-04-22 18:15:07
prion
prion
Cross site scripting
2023-04-22 18:15:00
github
github
Cross-site Scripting in thorsten/phpmyfaq
2023-04-22 18:30:28
osv
osv
Cross-site Scripting in thorsten/phpmyfaq
2023-04-22 18:30:28
CVE-2023-1875
2023-04-22 18:15:07
veracode
veracode
Cross-site Scripting (XSS)
2023-04-27 11:22:44
cve
cve
CVE-2023-1875
2023-04-22 18:15:07
openvas
openvas
phpMyFAQ < 3.1.12 Multiple Vulnerabilities
2023-04-04 00:00:00