Solarlog 200 pm+ 3.6.0 build 99 15.10.2019 stored xss Vulnerability / Exploit

  /     /     /  

Exploits / Vulnerability Discovered : 2024-03-05 | Type : webapps | Platform : hardware
This exploit / vulnerability Solarlog 200 pm+ 3.6.0 build 99 15.10.2019 stored xss is for educational purposes only and if it is used you will do on your own risk!

[+] Code ...

# Exploit Title: Stored XSS in Solar-Log 200 3.6.0 web panel
# Date: 10-30-23
# Exploit Author: Vincent McRae, Mesut Cetin - Redteamer IT Security
# Vendor Homepage: https://www.solar-log.com/en/
# Version: Solar-Log 200 PM+ 3.6.0 Build 99 - 15.10.2019
# Tested on: Proprietary devices: https://www.solar-log.com/en/support/firmware/
# CVE: CVE-2023-46344

# POC:

1. Go to solar panel
2. Go to configuration -> Smart Energy -> "drag & drop" button.
3. Change "name" to: <xss onmouseenter="alert(document.cookie)"
style=display:block>test</xss>
4. Once you hover over "test", you get XSS -> if a higher privileged
user hovers over it, we can get their cookies.

Solarlog 200 pm+ 3.6.0 build 99 15.10.2019 stored xss


Last added Exploits Vulnerabilities

▸ soplanning 1.52.01 (simple online planning tool) - remote code execution (rce) (authenticated) ◂
Discovered: 2024-11-15
Type: webapps
Platform: php
▸ rengine 2.2.0 - command injection (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: multiple
▸ opensis 9.1 - sqli (authenticated) ◂
Discovered: 2024-10-01
Type: webapps
Platform: php



Tags:
Solarlog 200 pm+ 3.6.0 build 99 15.10.2019 stored xss Vulnerability / Exploit