CSE Bookstore 1.0 – ‘quantity’ Persistent Cross-site Scripting

Exploit Database
37 阅读

作者： Vyshnav nk

日期： 2020-10-30
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/48973/

# Exploit Title: CSE Bookstore 1.0 - 'quantity' Persistent Cross-site Scripting
# Date: 30/10/2020
# Exploit Author: Vyshnav NK
# Vendor Homepage: https://projectworlds.in/
# Software Link: https://github.com/projectworlds32/online-book-store-project-in-php/archive/master.zip
# Version: 1.0
# Tested on: Windows 10 and Windows 7

CSE Bookstore is vulnerable to a Persistent Cross-site scriptingon Checkout.php and cartp.php, Where an user can able to add quantity as an XSS Payload and once added each time when we click on MyCart option it triggers as stored one

The below URL can be accessed by a User

URL :http://localhost/php/checkout.php and http://localhost/php/cart.php

Payload : "><svg/onload=alert(5)>

Insert XSS Payload into Quantity Section

last Exploits
CSE Bookstore 1.0 – ‘quantity’ Persistent Cross-site Scripting的更多信息

Aigaion 1.3.4 – ‘ID’ SQL Injection：
SickRage < v2018.03.09 - Clear-Text Credentials HTTP Response：
Lepton CMS 2.2.0/2.2.1 – Directory Traversal：
Inout Ad server Ultimate – Arbitrary File Upload：
Confluence Data Center 7.18.0 – Remote Code Execution (RCE)：
Simple Machines Forum (SMF) 2.0.2 – ‘scheduled’ Cross-Site Scripting：
SEO Panel 4.8.0 – ‘order_col’ Blind SQL Injection (2)：
Zyncro 3.0.1.20 – Multiple HTML Injection Vulnerabilities：