Lucene search

K

Vik Rent Car < 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS)

๐Ÿ—“๏ธย 19 Jul 2021ย 00:00:00Reported byย Muhammad DaffaTypeย 
wpexploit
ย wpexploit
๐Ÿ‘ย 359ย Views

Auth Stored XSS in Vik Rent Car 1.1.1

Show more
Related
Code
Add or Edit a Characteristic (/wp-admin/admin.php?option=com_vikrentcar&task=carat)) with the following payload in the 'Text Next to Icon' field: <script>alert(/XSS/)</script>

Then view the Characteristics List to trigger the XSS

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
19 Jul 2021 00:00Current
0.6Low risk
Vulners AI Score0.6
EPSS0.001
359
.json
Report