Lucene search
Hainguyen0207E4B0E8F4-5E06-49D1-832F-5756573623ADHistorySep 12, 2023 - 7:39 a.m.
Store DOM XSS in FAQ
2023-09-1207:39:57
hainguyen0207
www.huntr.dev
5
website security
flaw
xss
proof of concept
admin access
category
faq
published
sticky
homepage
stored xss
video poc
bug bounty
Description I noticed, your website is very secure.
But you overlooked a flaw XSS
Proof of Concept
1 .Login vs admin demo account and access admin page.
2 .Create a category, Question with payload:
haido<script>alert(document.domain)</script>
3 .Select FAQ status published and Sticky
4 .Back to the homepage, detect Store XSS.
Video Poc
https://drive.google.com/file/d/1NBwnD1GXASK-B67997tP69hvHMA0-eUw/view?usp=sharing
Related
osv
osv
CVE-2023-5864
2023-10-31 01:15:07
phpMyFAQ Cross-site Scripting vulnerability
2023-10-31 03:31:22
cvelist
cvelist
CVE-2023-5864 Cross-site Scripting (XSS) - Stored in thorsten/phpmyfaq
2023-10-31 00:00:19
veracode
veracode
Cross-site Scripting (XSS)
2023-11-01 05:51:28
prion
prion
Cross site scripting
2023-10-31 01:15:00
github
github
phpMyFAQ Cross-site Scripting vulnerability
2023-10-31 03:31:22
cve
cve
CVE-2023-5864
2023-10-31 01:15:07
nvd
nvd
CVE-2023-5864
2023-10-31 01:15:07
openvas
openvas
phpMyFAQ < 3.2.1 Multiple Vulnerabilities
2023-11-02 00:00:00
7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
14.2%
Related for E4B0E8F4-5E06-49D1-832F-5756573623AD