HTML Injection in Codoforum V4.8.3
Introduction:
Affected Product:CodoForum 4.8.3
Vendor Contact: admin@codologic.com
Vulnerability Type: HTML Injection
Remote Exploitable: Yes
Vulnerability Description
Codoforum 4.8.3 allows HTML Injection in the admin dashboard Manage users Section
Steps to reproduce the issue:
Install Codoforum in Localhost
Navigate to Admin-Dashboard and select Manage users section
Append the Input boxes including username and password with HTML Syntax
Eg: <h1>Vyshnav</h1>
Click on Add user,We can see that HTML got executed sucessfully
POC:
Affected Product:CodoForum 4.8.3
Vendor Contact: admin@codologic.com
Vulnerability Type: HTML Injection
Remote Exploitable: Yes
Vulnerability Description
Codoforum 4.8.3 allows HTML Injection in the admin dashboard Manage users Section
Steps to reproduce the issue:
Install Codoforum in Localhost
Navigate to Admin-Dashboard and select Manage users section
Append the Input boxes including username and password with HTML Syntax
Eg: <h1>Vyshnav</h1>
Click on Add user,We can see that HTML got executed sucessfully
POC:
Play Baccarat - Worrione
ReplyDeleteBaccarat is a trick-taking card game devised in the United States in the 1930s 실시간 바카라 사이트 위너바카라 and 1930s. One of the first legal variants of this game is baccarat.