Bazaar Social Listing Shopping Web PHP Template version 2.3.2 suffers from a cross site scripting vulnerability.
====================================================================================================================================
| # Title : Bazaar Social Listing Shopping Web PHP Template v2.3.2 XSS Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 66.0.2(32-bit) |
| # Vendor : https://codecanyon.net/item/bazaar-social-listing-shopping-web-php-template/23207913?s_rank=87 |
| # Dork : "/ad-info.php?adObjID=" |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] Create New User Account.
[+] Edit your account https://127.0.0.1/egyptdrinkscom/settings.php or Sell an item https://127.0.0.1/egyptdrinkscom/sell-edit-stuff.php
[+] Put Your Payload xss/hrml .
====Greetings to :=====================================================================================================================
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * djroot.dz * LiquidWorm* Hussin-X *D4NB4R * shadow_00715 * yasMouh |
=======================================================================================================================================
