Lucene search
Ahmedvienna949975F1-271D-46AA-85E5-1A013CDB5EFBHistoryJan 22, 2023 - 12:31 a.m.
Stored HTML Injection
2023-01-2200:31:00
ahmedvienna
www.huntr.dev
9
stored xss
html injection
penetration test
vulnerability
mitigation
user-input
0.001 Low
EPSS
Percentile
21.2%
Dear Ladies and Gentlemen,
First of all thank you for your time and effort reading my Report.
While doing the Penetration Test i was able to identify a stored XSS in the Username.
When an admin or another Users try to set up a new account and set his name to <script>alert(‘1’)</script> the Javascript will run and will be stored for admin and all other Users.
The Process of the Vulnerability:
- Login
- Go to https://roy.demo.phpmyfaq.de/admin/?action=user&user_action=listallusers
- Create a new User or change his username with <script>alert(‘1’)</script>
- Refresh the Page from any Account admin or normal User the Code will run
Example for the HTML Code:
<script>alert(‘1’)</script>
Mitigation:
Please do not allow Javascript Code to run and never trust User-Input.
At the End I want to thank you for your time and effort and hope hearing from you soon.
Best regards
Ahmed Hassan
Related
veracode
veracode
Stored Cross-Site Scripting (XSS)
2023-02-22 07:42:36
prion
prion
Cross site scripting
2023-02-12 14:15:00
osv
osv
CVE-2023-0794
2023-02-12 14:15:11
Cross-site Scripting in thorsten/phpmyfaq
2023-02-12 15:30:25
cvelist
cvelist
CVE-2023-0794 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2023-02-12 00:00:00
nvd
nvd
CVE-2023-0794
2023-02-12 14:15:11
cve
cve
CVE-2023-0794
2023-02-12 14:15:11
github
github
Cross-site Scripting in thorsten/phpmyfaq
2023-02-12 15:30:25
openvas
openvas
phpMyFAQ < 3.1.11 Multiple Vulnerabilities
2023-02-13 00:00:00