Headline
Showdoc 2.10.3 Cross Site Scripting
Showdoc versions 2.10.3 and below suffer from a persistent cross site scripting vulnerability.
# Exploit Title: Showdoc 2.10.3 - Stored Cross-Site Scripting (XSS)# Exploit Author: Akshay Ravi# Vendor Homepage: https://github.com/star7th/showdoc# Software Link: https://github.com/star7th/showdoc/releases/tag/v2.10.3# Version: <= 2.10.3# Tested on: macOS Monterey# CVE : CVE-2022-0967Description: Stored XSS via uploading file in .ofd format1. Create a file with .ofd extension and add XSS Payload inside the file filename = "payload.ofd" payload = "<script>alert(1)</script>"2. Login to showdoc v2.10.2 and go to file library Endpoint = "https://www.site.com/attachment/index"3. Upload the payload on file library and click on the check button4. The XSS payload will executed once we visited the URLRelated news
CVE-2022-0967: Upload file vulnerability · star7th/showdoc@3caa323
Stored XSS via File Upload in star7th/showdoc in star7th/showdoc in GitHub repository star7th/showdoc prior to 2.10.4.