Eve-ng 5.0.1-13 Cross Site Scripting

# Exploit Title: Eve-ng 5.0.1-13 - Stored Cross-Site Scripting (XSS) # Google Dork: N/A# Date: 12/6/2022# Exploit Author: @casp3r0x0 hassan ali al-khafaji# Vendor Homepage: https://www.eve-ng.net/# Software Link: https://www.eve-ng.net/index.php/download/# Version: Free EVE Community Edition Version 5.0.1-13# Tested on: Free EVE Community Edition Version 5.0.1-13# CVE : N/A#we could achieve stored XSS on eve-ng free I don't know If thiseffect pro version also#first create a new lab#second create a Text label#insert the xss payload and click save "><script>alert(1)</script>#the application is multi user if any user open the lab the xss will be triggered.