Published: 11/05/2023 Updated: 24/05/2023

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 0

Cross Site Scripting vulnerability found in Webkil QloApps v.1.5.2 allows a remote malicious user to obtain sensitive information via the back and email_create parameters in the AuthController.php file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
webkul qloapps 1.5.2

Webkul Qloapps version 152 suffers from a cross site scripting vulnerability ...

Config files for my GitHub profile.

┌─[ahrixia@ubuntu]─[/] └──╼ # whoami Astik Rawat ┌─[ahrixia@ubuntu]─[/] └──╼ # hostname 23 year old Cyber Security Consultant / Pentester 💻 I'm passionate about cybersecurity, CTFs and learning You can find my writings on Medium I hold few certifications on side to make progress towards my main goal

CWE-79 https://qloapps.com/https://github.com/webkul/hotelcommerce https://github.com/ahrixia/CVE-2023-30256 http://packetstormsecurity.com/files/172542/Webkul-Qloapps-1.5.2-Cross-Site-Scripting.html https://nvd.nist.gov https://github.com/ahrixia/ahrixia https://packetstormsecurity.com/files/172542/Webkul-Qloapps-1.5.2-Cross-Site-Scripting.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-30256

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect