e95d9f2c13
23 changes to exploits/shellcodes dirsearch 0.4.1 - CSV Injection IObit Uninstaller 10 Pro - Unquoted Service Path WinAVR Version 20100110 - Insecure Folder Permissions PaperStream IP (TWAIN) 1.42.0.5685 - Local Privilege Escalation H2 Database 1.4.199 - JNI Code Execution Responsive ELearning System 1.0 - 'id' Sql Injection Responsive E-Learning System 1.0 - 'id' Sql Injection Advanced Webhost Billing System 3.7.0 - Cross-Site Request Forgery (CSRF) IPeakCMS 3.5 - Boolean-based blind SQLi Expense Tracker 1.0 - 'Expense Name' Stored Cross-Site Scripting WordPress Plugin litespeed cache 3.6 - 'server_ip' Cross-Site Scripting Responsive E-Learning System 1.0 - Unrestricted File Upload to RCE Responsive E-Learning System 1.0 - Stored Cross Site Scripting WordPress Plugin WP24 Domain Check 1.6.2 - 'fieldnameDomain' Stored Cross Site Scripting Newgen Correspondence Management System (corms) eGov 12.0 - IDOR Resumes Management and Job Application Website 1.0 - RCE (Unauthenticated) Resumes Management and Job Application Website 1.0 - Multiple Stored XSS Gitea 1.7.5 - Remote Code Execution Sonatype Nexus 3.21.1 - Remote Code Execution (Authenticated)
12 lines
No EOL
597 B
Text
12 lines
No EOL
597 B
Text
# Exploit Title: Resumes Management and Job Application Website 1.0 - Multiple Stored XSS
|
|
# Date: 2/1/2021
|
|
# Exploit Author: Saswat Subhajyoti Mallick
|
|
# Vendor Homepage: https://egavilanmedia.com/
|
|
# Software Link: https://egavilanmedia.com/resumes-management-and-job-application-website/
|
|
# Version: 1.0
|
|
# Tested on: windows 10/wamp
|
|
|
|
Attacker can put stored xss and gain admin access unauthenticated .
|
|
For stored XSS poc simply put <script>alert(1)</script> in first name,last name and address field while applying for resume.
|
|
|
|
Stored XSS will be activated the moment admin user logs in. |