tp-xss

TP - Exploitation d'une Faille XSS Enonce du professeur...

Lab-Reflected-XSS-into-attribute-with-angle-brackets-HTML-encoded

Reflected XSS - Attribute Injection A simple demonstration of...

WebsiteBaker v2.13.3 - Cross-Site Scripting Vulnerability

Exploit Title: WebsiteBaker v2.13.3 - Cross-Site Scripting XSS Application: WebsiteBaker Version: 2.13.3 Bugs: Stored XSS Technology: PHP Vendor URL: https://websitebaker.org/pages/en/home.php Software Link: https://wiki.websitebaker.org/doku.php/en/downloads Date of found: 02.04.2023 Author:...

Online Appointment System V1.0 - Cross-Site Scripting (XSS)

Exploit Title: Online Appointment System V1.0 - Cross-Site Scripting XSS Date: 25/02/2023 Exploit Author: Sanjay Singh Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14502/online-appointment-system-php-full-source-code-2020.html Tested on: Window...

Simple Social Buttons < 3.2.0 - Reflected Cross-Site Scripting

Simple Social Buttons version 3.1.1 has a reflected Cross-Site Scripting vulnerability in the POST parameter "sharecounts". Both unauthenticated and authenticated attacks are possible Edit WPScanTeam The original report stated the issue as being fixed in 3.2.0, however a CSRF nonce has been added...

Employee Record System 1.0 - Multiple Stored XSS

Exploit Title: Employee Record System 1.0 - Multiple Stored XSS Exploit Author: Saeed Bala Ahmed r0b0tG4nG Date: 2020-12-09 Google Dork: N/A Vendor Homepage: https://www.sourcecodester.com/php/14588/employee-record-system-phpmysqli-full-source-code.html Software Link:...

boutiqueanglaise.com XSS vulnerability

Vulnerable URL: http://www.boutiqueanglaise.com/achat/recherche.html?motclef=Hello%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3E=Rechercher Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...

jetcost.es XSS vulnerability

Vulnerable URL: http://www.jetcost.es/results.php?sid="alert'OPENBUGBOUNTY'...

learnrussianwell.com XSS vulnerability

Vulnerable URL: http://www.learnrussianwell.com/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 15050812 VIP website status:| No Check learnrussianwell.co...

ZTE Modem ZXDSL 531BIIV7.3.0f_D09_IN - Persistent Cross-Site Scripting

ZTE Modem ZXDSL 531BIIV7.3.0fD09IN - Persistent Cross-Site Scripting Exploit Title: ZTE Modem Stored XSS Vulnerability Date: 30-10-2014 Exploit Author: Ravi Rajput aka Gr3y n00b IHT team Version: ZXDSL 531BIIV7.3.0fD09IN Software Link:http://wwwen.zte.com.cn Tested on : Windows 7 code : GET...

Unfixed XSS vulnerability at www.tarmhost.com

Security researcher KaBuS, has submitted on 13/05/2007 a cross-site-scripting XSS vulnerability affecting www.tarmhost.com, which at the time of submission ranked 617020 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/05/2007. It is currentl...