Boonex Dolphin 7.4.2 – ‘width’ Stored XSS

Exploit Database
16 阅读

作者： Piyush Patil

日期： 2021-03-19
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/49670/

# Exploit Title: Boonex Dolphin 7.4.2 - 'width' Stored XSS
# Date: 18-03-2021
# Exploit Author: Piyush Patil
# Vendor Homepage: https://www.boonex.com/
# Software Link: https://www.boonex.com/downloads
# Version: 7.4.2
# Tested on: Windows 10

# Reference - https://github.com/xoffense/POC/blob/main/Boonex%20Dolphin%20CMS%207.4.2%20%20stored%20XSS

Steps to Reproduce Bug:
1- Login to Admin Panel
2- Goto "Builders" => "Pages Builder"
3- Select any page
4- Turn on Burp Suite Intercept and Change "other pages width" to "1081px</script><script>alert(document.cookie)</script>"

last Exploits
Boonex Dolphin 7.4.2 – ‘width’ Stored XSS的更多信息

Joomla! Component Ek Rishta 2.10 – SQL Injection：
Ad Board Script 1.01 – Local File Inclusion：
VideoInsight WebClient 5 – SQL Injection：
WordPress Plugin Pretty Link – Cross-Site Scripting：
SaltOS – ‘download.php’ Cross-Site Scripting：
Joomla! Component com_szallasok – ‘id’ SQL Injection：
Jorani Leave Management 0.6.5 – (Authenticated) ‘startdate’ SQL Injection：
Softbiz Resource Repository Script – Blind SQL Injection：