daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update flatpress-xss.yaml

patch-1
Prince Chaddha 2022-10-14 17:13:39 +05:30 committed by GitHub
parent 2411426ed1
commit 75fdd023c5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
vulnerabilities/other/flatpress-xss.yaml
View File

@ -8,10 +8,11 @@ info:
A Reflected cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content.
reference:
- https://github.com/flatpressblog/flatpress/issues/153
- https://github.com/flatpressblog/flatpress
metadata:
verified: true
shodan-query: http.html:"Flatpress"
tags: flatpress,xss,authenticated
tags: flatpress,xss,authenticated,oss
requests:
- raw: