Headline
CVE-2022-3765: Stored Cross-site scripting in phpmyfaq
Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpmyfaq prior to 3.1.8.
Description
Cross-Site Scripting (XSS) attacks are a type of injection, in which malicious scripts are injected into otherwise benign and trusted websites.
Proof of Concept
Visit: http://<ip>/phpmyfaq/admin/?action=meta Click button Add template meta data Inject payload in field Page type: "><script>alert(“XSS”)</script> and Save Every time you go to http://<ip>/phpmyfaq/admin/?action=meta, payload XSS will execute Image POC: https://drive.google.com/file/d/1iezIdmxcCBY8G714AUFGIm3fI145yiC1/view?usp=sharing
Impact
Attacker can inject Javascript steal cookie, deface website …
Related news
GHSA-wr74-2v66-57pp: phpMyFAQ vulnerable to stored Cross-site Scripting
phpMyFAQ prior to version 3.1.8 is vulnerable to stored Cross-site Scripting.