Home[1] Files[2] News[3] &[SERVICES_TAB] Contact[4] Add New[5]
- News247 News Magazine 1.0 Cross Site Scripting[6]
- Authored by Ravinder Verma[7]
-
News247 News Magazine version 1.0 suffers from a persistent cross site scripting vulnerability.
- advisories | CVE-2021-41731[8]
- SHA-256 |
0ea0c812171a55c5cffd9cd5752f28312a1e018fc62d7680951d7ba32234f7be
- Download[9] | Favorite[10] | View[11]
Change Mirror[12] Download[13]
# Exploit Title: News247 - News Magazine (CMS) v1.0 – Stored Cross Site Scripting (XSS)
# Exploit Author: Ravinder Verma
# Date: Septmeber 14, 2022
# Vendor Homepage: https://www.sourcecodester.com/php/14952/news247-news-magazine-php-script.html
# Software Link: https://www.sourcecodester.com/sites/default/files/download/oretnom23/news247.zip
# Tested on: Kali Linux, Apache, Mysql
# Vendor: 255programmer
# Version: v1.0
# CVE [Reserved] : CVE-2021-41731
# Exploit Description:
# News247 - News Magazine (CMS) v1.0 suffers from a stored cross site
scripting (XSS) Vulnerability. Admin can publish blogs under various
categories. When creating new "blog category", if admin give malicious
payload like *""><img src=x onerror=alert(document.cookie)>* into the
category name field and publish that blog. Then it allows you to execute
arbitrary JavaScript in the context of the whole user who visited that
page. It can be abused to steal session cookies, perform requests in the
name of the victim or for phishing attacks.
File Tags
- ActiveX[18] (932)
- Advisory[19] (78,203)
- Arbitrary[20] (15,252)
- BBS[21] (2,859)
- Bypass[22] (1,582)
- CGI[23] (1,013)
- Code Execution[24] (6,757)
- Conference[25] (671)
- Cracker[26] (799)
- CSRF[27] (3,275)
- DoS[28] (22,033)
- Encryption[29] (2,339)
- Exploit[30] (50,070)
- File Inclusion[31] (4,158)
- File Upload[32] (945)
- Firewall[33] (821)
- Info Disclosure[34] (2,564)
- Intrusion Detection[35] (859)
- Java[36] (2,822)
- JavaScript[37] (806)
- Kernel[38] (6,141)
- Local[39] (14,079)
- Magazine[40] (586)
- Overflow[41] (12,249)
- Perl[42] (1,413)
- PHP[43] (5,056)
- Proof of Concept[44] (2,284)
- Protocol[45] (3,345)
- Python[46] (1,405)
- Remote[47] (29,834)
- Root[48] (3,462)
- Ruby[49] (580)
- Scanner[50] (1,630)
- Security Tool[51] (7,731)
- Shell[52] (3,074)
- Shellcode[53] (1,203)
- Sniffer[54] (883)
- Spoof[55] (2,122)
- SQL Injection[56] (16,050)
- TCP[57] (2,368)
- Trojan[58] (680)
- UDP[59] (871)
- Virus[60] (660)
- Vulnerability[61] (30,632)
- Web[62] (9,098)
- Whitepaper[63] (3,723)
- x86[64] (943)
- XSS[65] (17,380)
- Other[66]
File Archives
- September 2022[67]
- August 2022[68]
- July 2022[69]
- June 2022[70]
- May 2022[71]
- April 2022[72]
- March 2022[73]
- February 2022[74]
- January 2022[75]
- December 2021[76]
- November 2021[77]
- October 2021[78]
- Older[79]
Systems
- AIX[80] (426)
- Apple[81] (1,899)
- BSD[82] (369)
- CentOS[83] (55)
- Cisco[84] (1,915)
- Debian[85] (5,948)
- Fedora[86] (1,690)
- FreeBSD[87] (1,242)
- Gentoo[88] (4,197)
- HPUX[89] (878)
- iOS[90] (323)
- iPhone[91] (108)
- IRIX[92] (220)
- Juniper[93] (67)
- Linux[94] (42,848)
- Mac OS X[95] (684)
- Mandriva[96] (3,105)
- NetBSD[97] (255)
- OpenBSD[98] (478)
- RedHat[99] (11,977)
- Slackware[100] (941)
- Solaris[101] (1,607)
- SUSE[102] (1,444)
- Ubuntu[103] (7,996)
- UNIX[104] (9,110)
- UnixWare[105] (185)
- Windows[106] (6,465)
- Other[107]