Whole CMS Is Vulnerable To Reflected XSS
Reported by Narendra Bhati | November 16th, 2014 @ 02:28 PM | in User issues
Hey Exponent CMS
want to report critical conditions of your cms , that your whole cms is vulnerable to Reflected XSS Attack
how ?
Lets see
suppose you heve this ur - http://127.0.0.1/exponent/users/userperms/mod/navigation/int/1
then you just have to xss payload at the end of the url - like
this
http://127.0.0.1/exponent/users/userperms/mod/navigation/int/1"...;
every single page which have no parameter is vulnerable to same attack
just add "> in every single page which have no xss and you will get the js alert box
Comments and changes to this ticket
-
Narendra Bhati November 16th, 2014 @ 07:30 PM
- Assigned user set to “expNinja”
yaa right , i have downloaded the new version of your cms 4 days before !
but for make me sure , kindly send me the link where i can download the new version !
-
Narendra Bhati November 16th, 2014 @ 07:33 PM
i am 100% sure , that i am using 2.1.4 patch 6 which i have downloaded on 14 nov 2014
-
Narendra Bhati December 4th, 2014 @ 07:37 PM
- Assigned user set to “expNinja”
i checked that i am using the latest version which is vulnerable to XSS !
Please Sign in or create a free account to add a new ticket.
With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.
Create new ticket
Create your profile
Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป
Bug Tracker for Exponent CMS
expNinja
Narendra Bhati