Csz cms 1.2.7 title html injection Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2020-04-21 |
Type : webapps |
Platform : php
This exploit / vulnerability Csz cms 1.2.7 title html injection is for educational purposes only and if it is used you will do on your own risk!
[+] Code ...
# Exploit Title: CSZ CMS 1.2.7 - 'title' HTML Injection
# Exploit Author: Metin Yunus Kandemir
# Vendor Homepage: https://www.cszcms.com/
# Software Link: https://sourceforge.net/projects/cszcms/
# Version: v1.2.7
# Description:
# Authenticated user can inject hyperlink to Backend System Dashboard and
# Member Dashboard via message.