7 matches found
Best Support System 3.0.4 Cross Site Scripting
Exploit Title: Best Support System 3.0.4 - 'ticketbody' Persistent XSS Authenticated Google Dork: "Powered By Best Support System" Date: 2020-08-23 Exploit Author: Ex.Mi https://ex-mi.ru Vendor: Appsbd https://appsbd.com Software Version: 3.0.4 Software Link:...
Best Support System 3.0.4 - 'ticket_body' Persistent XSS (Authenticated)
Exploit Title: Best Support System 3.0.4 - 'ticketbody' Persistent XSS Authenticated Google Dork: "Powered By Best Support System" Date: 2020-08-23 Exploit Author: Ex.Mi https://ex-mi.ru Vendor: Appsbd https://appsbd.com Software Version: 3.0.4 Software Link:...
CVE-2020-24963
An Authenticated Persistent XSS vulnerability was discovered in the Best Support System, tested version v3.0.4...
CVE-2020-24963
An Authenticated Persistent XSS vulnerability was discovered in the Best Support System, tested version v3.0.4...
Cross site scripting
An Authenticated Persistent XSS vulnerability was discovered in the Best Support System, tested version v3.0.4...
CVE-2020-24963
Summary: CVE-2020-24963 affects the Best Support System, v3.0.4. The vulnerability is an authenticated persistent XSS in the application, demonstrated via the ticketing workflow, specifically the ticket_body input in the ticket-confirm/ticket-reply/11.html path. The evidence from connected source...
CVE-2020-24963
An Authenticated Persistent XSS vulnerability was discovered in the Best Support System, tested version v3.0.4...