Lucene search
R0hansh67085545-331E-4469-90F3-A1A46A078D39HistoryJan 02, 2022 - 10:01 p.m.
Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-0222:01:57
r0hansh
www.huntr.dev
9
0.001 Low
EPSS
Percentile
21.6%
Description
Stored XSS is a vulnerability in which the attacker can execute arbitrary javascript code in the victim’s browser. The XSS payload is stored in a webpage and it gets executed whenever someone visits that webpage.
I used : instead of : in the href attribute of <a> tag to bypass the xss checks happening in the application.
Proof of Concept
1 A low-priv user create a page with the following payload:
<a href>CLICK HERE TO EXPLOIT THIS XSS</a>
2 Victim visit the page and click on CLICK HERE TO EXPLOIT THIS XSS
XSS alert will show the domain name.
Impact
Attacker can execute arbitrary javascript code in the victim’s browser
Related
osv
osv
CVE-2022-0268
2022-01-25 11:15:08
Cross-site Scripting in grav
2022-01-27 18:27:56
cvelist
cvelist
CVE-2022-0268 Cross-site Scripting (XSS) - Stored in getgrav/grav
2022-01-25 10:40:11
github
github
Cross-site Scripting in grav
2022-01-27 18:27:56
cnvd
cnvd
Grav Cross-Site Scripting Vulnerability (CNVD-2022-07637)
2022-01-27 00:00:00
prion
prion
Cross site scripting
2022-01-25 11:15:00
nvd
nvd
CVE-2022-0268
2022-01-25 11:15:08
cve
cve
CVE-2022-0268
2022-01-25 11:15:08
veracode
veracode
Cross-site Scripting (XSS)
2022-01-26 03:05:36