Lucene search
Ahmedvienna808D5452-607C-4AF1-812F-26C49FAF3E61HistoryJan 23, 2023 - 11:32 p.m.
stored HTML-Injection throuth the Question Form
2023-01-2323:32:01
ahmedvienna
www.huntr.dev
7
html-injection
vulnerability
question form
penetration test
administrator
javascript code
phishing
malware download
EPSS
0.002
Percentile
58.6%
Dear Ladies and Gentlemen,
First of all, thank you for your time and effort in reading my Report.
While doing the Penetration Test my Brother Josef Hassan ([email protected] ) and I were able to identify another stored HTML-Injection Vulnerability in the Question Form.
The Process of the Vulnerability:
- Login
- Go to https://roy.demo.phpmyfaq.de/index.php?action=ask&category_id=0
- Any User will be able to submit questions that need to be verified by the Administrator.
- As soon as the Administrator will review the Question and accept it the HTML Code will work after refreshment.
- The User can submit HTML code and it will run as Code.
- Type any kind of JavaScript Code like <h1>1</h1>
The Attacker can inject HTML Code and to do further malicious things like Phishing, Malware Download, redirecting to malicious Sites etc.
Through this, any Attacker can inject HTML Code and use further Vulnerabilities to use other Exploitation Steps.
Finally, I want to thank you for your time and effort, and hope to hear from you soon.
Best regards
Ahmed Hassan & Josef Hassan
Related
osv
osv
CVE-2023-0788
2023-02-12 14:15:11
Code Injection in thorsten/phpmyfaq
2023-02-12 15:30:25
github
github
Code Injection in thorsten/phpmyfaq
2023-02-12 15:30:25
cvelist
cvelist
CVE-2023-0788 Code Injection in thorsten/phpmyfaq
2023-02-12 00:00:00
nvd
nvd
CVE-2023-0788
2023-02-12 14:15:11
prion
prion
Code injection
2023-02-12 14:15:00
veracode
veracode
Stored HTML Injection
2023-02-19 09:14:11
cnvd
cnvd
phpMyFAQ Code Injection Vulnerability (CNVD-2023-09631)
2023-02-14 00:00:00
cve
cve
CVE-2023-0788
2023-02-12 14:15:11
openvas
openvas
phpMyFAQ < 3.1.11 Multiple Vulnerabilities
2023-02-13 00:00:00