Stock management system 1.0 categories name persistent crosssite scripting Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2020-10-21 |
Type : webapps |
Platform : php
This exploit / vulnerability Stock management system 1.0 categories name persistent crosssite scripting is for educational purposes only and if it is used you will do on your own risk!
[+] Code ...
# Exploit Title: Stock Management System 1.0 - Persistent Cross-Site Scripting (Categories Name)
# Exploit Author: Adeeb Shah (@hyd3sec)
# Date: August 2, 2020
# Vendor Homepage: https://www.sourcecodester.com/
# Software Link: https://www.sourcecodester.com/php/14366/stock-management-system-php.html
# Version: 1.0
# Tested On: Windows 10 (x64_86) + XAMPP 7.4.4
# Vulnerability Details
# Description A persistent cross-site scripting vulnerability exists within the 'Categories Name' parameter in the edit brand function.
# This example allows a logged-in user to inject javascript code as a persistent XSS attack which is persistent on any page with the Categories Name value expected.
#Steps:
1. Log in with admin privileges (use credentials or use the Auth Login Bypass exploit)
2. Click "Category"
3. Click "Action" in any categories name row
4. Click Edit
5. In "Categories Name" field enter XSS <script>alert("XSS")</script>
6. Click save changes
7. Any page on the webapp expecting that 'Categories Name' will trigger the XSS.