Skip to content

Latest commit

 

History

History
10 lines (7 loc) · 605 Bytes

File metadata and controls

10 lines (7 loc) · 605 Bytes

MaianAffiliate v.1.0 - Code execution and stored XSS (authenticated)

https://www.maianaffiliate.com/

How it works

To exploit this vulnerability one has to log into MaianAffiliate admin panel and add a new product. The injected payload is reflected on the affiliate mane page (for all authenticated and unauthenticated visitors).

Affiliate

This is for educational purposes only. I do not encourage nor do I take responsibility for any unethical or illegal activities related to this exploit.