6 matches found
Copyparty 1.8.6 Cross Site Scripting
Exploit Title: copyparty v1.8.6 - Reflected Cross Site Scripting XSS Date: 23/07/2023 Exploit Author: Vartamtezidis Theodoros @TheHackyDog Vendor Homepage: https://github.com/9001/copyparty/ Software Link: https://github.com/9001/copyparty/releases/tag/v1.8.6 Version: =1.8.6 Tested on: Debian Lin...
copyparty v1.8.6 - Reflected Cross Site Scripting Vulnerability
Exploit Title: copyparty v1.8.6 - Reflected Cross Site Scripting XSS Exploit Author: Vartamtezidis Theodoros @TheHackyDog Vendor Homepage: https://github.com/9001/copyparty/ Software Link: https://github.com/9001/copyparty/releases/tag/v1.8.6 Version: =1.8.6 Tested on: Debian Linux CVE :...
copyparty v1.8.6 - Reflected Cross Site Scripting (XSS)
Exploit Title: copyparty v1.8.6 - Reflected Cross Site Scripting XSS Date: 23/07/2023 Exploit Author: Vartamtezidis Theodoros @TheHackyDog Vendor Homepage: https://github.com/9001/copyparty/ Software Link: https://github.com/9001/copyparty/releases/tag/v1.8.6 Version: =1.8.6 Tested on: Debian Lin...
CVE-2023-38501
Copyparty (portable file server) is affected by CVE-2023-38501 via a reflected XSS in the web interface, exploitable through URL parameters ?k304=... and ?setck=... in versions prior to 1.8.7. The vulnerability allows an attacker to execute arbitrary JavaScript by enticing a user to click a craft...
CVE-2023-38501 copyparty vulnerable to reflected cross-site scripting via k304 parameter
copyparty is file server software. Prior to version 1.8.7, the application contains a reflected cross-site scripting via URL-parameter ?k304=... and ?setck=.... The worst-case outcome of this is being able to move or delete existing files on the server, or upload new files, using the account of t...
CVE-2023-38501
creationtimestamp| type| source ---|---|--- 2023-07-23 16:22:59+00:00| published-proof-of-concept| https://github.com/9001/copyparty/security/advisories/GHSA-f54q-j679-p9hh 2023-07-26 02:27:12+00:00| seen| https://t.me/cibsecurity/67279 2023-07-28 00:00:00+00:00| exploited|...