Lucene search

K

Scgajge1276A3441D-7F75-4A8D-A7A0-95A7F5456EB0

HistoryJul 01, 2023 - 3:22 a.m.

Reflected XSS in date

2023-07-0103:22:33

scgajge12

www.huntr.dev

10

reflected xss

fossbilling

admin screen

execute script

date_to parameter

date_from parameter

proof of concept

video

0.001 Low

EPSS

Percentile

23.9%

Description

There is a reflective XSS on the FOSSBilling admin screen.

Proof of Concept

By accessing the following URL, it is possible to execute any script on the browser of the logged-in administrator user.

URL: https://localhost/admin?_url=%2Fadmin&date_to=2023-07-08&date_from=%27%22%3E%3Cimg%20src=x%20onerror=alert(3)%3E

Payload

'"><img src>

Parameter

date_to
date_from

PoC Video

https://drive.google.com/file/d/1Zha4cWz-dBM8PWpmLvQUU2zHn2g_6PME/view?usp=sharing

References

huntr.dev/bounties/18a74a9d-4a2d-4bf8-ae62-56a909427070/

0.001 Low

EPSS

Percentile

23.9%

Related for 76A3441D-7F75-4A8D-A7A0-95A7F5456EB0

cvelist1 cve1 prion1 osv1 nvd1