Tasked PHP Task Management Multiple Stored XSS Injection - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1571336 漏洞类型
发布时间 2019-04-16 更新时间 2019-04-16
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019040138
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
PoC: Go to the demo website http://byluminary.com/envato_demos/Tasked/login.php and register your new account with payload inside «First Name» and/or «Last Name» fields (keep in mind that mail activation is enabled, to use any temp mail service for tests). Activate your account and log in using your credentials, then go to http://byluminary.com/envato_demos/Tasked/index.php?page=profile to launch your payload(s).

More vulnerable fields:
http://byluminary.com/envato_demos/Tasked/index.php?page=categories - create new category with desired payload inside «Name» and/or «Description» field(s);
http://byluminary.com/envato_demos/Tasked/index.php?page=openTasks and http://byluminary.com/envato_demos/Tasked/index.php?page=calendar - same stuff like categories.