Stored XSS From Visitor to Acc Takeover

2023-02-1619:27:16

isdkrisna

www.huntr.dev

xss

ip manipulation

admin takeover

0.001 Low

EPSS

Percentile

23.5%

JSON

Description

Using X-Forwarded-For Header Visitor can manipulate ip to trigger xss

Proof of Concept

1.Visit any url and Add Header X-Forward-For: 127.0.0.1"&gt;&lt;image/src/onerror=prompt(8)&gt;
2.If admin check in dashboard xss will trigger

Check This image
&gt;https://drive.google.com/file/d/1hNSEr5Fjnzd9n62SFspW3z7Ojs-q6cCw/view?usp=share_link
&gt;https://drive.google.com/file/d/1cfnIoKWtLsjRUcU4J0Qs_bU-a_Z6gPNo/view?usp=share_link

Disclaimer: This is my own website

0.001 Low

EPSS

Percentile

23.5%

JSON

Related for D5EBC2BD-8638-41C4-BF72-7C906C601344