Lucene search
LeoracB7140709-8F84-4F19-9463-78669FA2175BHistoryDec 30, 2022 - 8:19 p.m.
Authenticated HTMLi via theme parameter on /lib/ajax.php
2022-12-3020:19:43
leorac
www.huntr.dev
17
authenticated
html injection
theme parameter
/lib/ajax.php
vulnerability
demo.froxlor.org
0.001 Low
EPSS
Percentile
20.1%
Description
The theme parameter is vulnerable to HTMLi on /lib/ajax.php endpoint
Proof of Concept
- go to https://v2.demo.froxlor.org
- Login with a user
- Go to https://v2.demo.froxlor.org/lib/ajax.php?action=newsfeed&theme=</br><h1>HTMLi by leo_rac</h1><br>
- You’ll see the injected payload
Related
prion
prion
Design/Logic Flaw
2022-12-30 23:15:00
osv
osv
Froxlor vulnerable to Argument Injection
2022-12-31 00:30:21
CVE-2022-4864
2022-12-30 23:15:11
cve
cve
CVE-2022-4864
2022-12-30 23:15:11
veracode
veracode
Argument Injection
2023-01-03 16:26:20
cvelist
cvelist
CVE-2022-4864 Argument Injection in froxlor/froxlor
2022-12-30 00:00:00
nvd
nvd
CVE-2022-4864
2022-12-30 23:15:11
github
github
Froxlor vulnerable to Argument Injection
2022-12-31 00:30:21