Lucene search
LeoracD6D1E1E2-2F67-4D28-AA84-B30FB1D2E737HistoryJan 01, 2023 - 12:03 p.m.
Stored XSS via blog author parameter on admin.php?p=config
2023-01-0112:03:23
leorac
www.huntr.dev
10
stored xss
blog author parameter
unsanitized input
admin.php
injection
javascript code
security issue
web application
EPSS
0.001
Percentile
25.6%
Description
The blog author parameter is unsanitized on the page admin.php?p=config. In this way is possible to inject arbitrary javascript code
Proof of Concept
- Login as regular user
- Go to http://localhost/flatpress/admin.php?p=config
- Set as blog author
"><script>alert(document.domain)</script> - Refresh page
Related
prion
prion
Cross site scripting
2023-03-02 03:15:00
nvd
nvd
CVE-2023-1146
2023-03-02 03:15:08
cve
cve
CVE-2023-1146
2023-03-02 03:15:08
osv
osv
CVE-2023-1146
2023-03-02 03:15:08
cvelist
cvelist
openvas
openvas
FlatPress < 1.3 Multiple Vulnerabilities
2023-03-02 00:00:00