Stored XSS in Add new question

2023-01-0818:15:39

leminv

www.huntr.dev

stored xss

add new question

admin panel

http response

untrusted source

payload

published post

cross-site scripting

0.0005 Low

EPSS

Percentile

17.9%

JSON

Description

Stored cross-site scripting (also known as second-order or persistent XSS) arises when an application receives data from an untrusted source and includes that data within its later HTTP responses in an unsafe way.

steps

1-log in as an admin user first.
2-go to : https://roy.demo.phpmyfaq.de/admin/?action=editentry
3- add this payload in the description: "><svg/onload=alert(11);>
3- save it as a published post
4- open the main page https://roy.demo.phpmyfaq.de/ and the XSS will work.

// PoC.js
var payload = "><svg/onload=alert(11);>

0.0005 Low

EPSS

Percentile

17.9%

JSON

Related for CBBA22F0-89ED-4D01-81EA-744979C8CBDE