Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2018-6862

Publish Date: 09 Feb 2018

Source

                							

                ########################################################################
# Exploit Title: Bitcoin MLM Software 1.0.2 - Stored XSS
# Date: 07.02.2018
# Vendor Homepage: https://www.phpscriptsmall.com/
# Software Link: https://www.phpscriptsmall.com/product/bitcoin-mlm/
# Category: Web Application
# Exploit Author: Prasenjit Kanti Paul
# Web: http://hack2rule.wordpress.com/
# Version: 1.0.2
# Tested on: Linux Mint
# CVE: CVE-2018-6862
##########################################################################
 
*Proof of Concept*
 
1. Login into the site
2. Goto "Edit Profile"
3. Put "&lt;script&gt;alert("PKP")&lt;/script&gt;" in any field
4. You will be having a popup "PKP"

<p>

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Bitcoin MLM Software 1.0.2 Cross Site Scripting

Vulmon Search

About

Products

Connect