A TREASURE OF GENERAL KNOWLEDGE =>Place Where You Find All General Questions of Science/Technology,Games,Mystery, etc. Also About Ethical Hacking
CVE-2018-14541

(CVE-2018-14541) I found that specified PHP Scripts Mall Entrepreneur B2B Script 2.0.0 has Reflected and Stored XSS via the First name, Last name, Address 1, City, State, and Company name fields parameter. To exploit the vulnerability, the following steps were taken.

1. Go to the site ( http://readymadeb2bscript.com/basic-b2b/ ) or CLICK HERE
CVE-2018-14541-Vikas Chaudhary
CVE-2018-14541-Vikas Chaudhary
2- Click on Join Free => Fill the Form and Create an Account using your name email and soo on … CVE-2018-14541-Vikas Chaudhary 3- Goto your mail and Verify it. CVE-2018-14541-Vikas Chaudhary 4-Come back to site and Login using your Verified Mail and Password. 6- When loged in ,goto My Profile => Edit Profile and fill the these Scripts in given parameter. in FIRST NAME => “>< *img src=x onerror=prompt(/VIKAS/)> in LAST NAME => “>< *img src=x onerror=prompt(/CHAUDHARY/)> in ADDRESS 1 => “>< *img src=x onerror=prompt(/MYAIM/)> in ADDRESS 2 => “>< *img src=x onerror=prompt(/GKAIM/)> in CITY => “>< *img src=x onerror=prompt(/HRFP/)> in STATE => “>< *img src=x onerror=prompt(/ETHICAL/)> in COMPANY NAME => “>< *img src=x onerror=prompt(/HACKER/)> [Note=> Remove * from script] Now click on SUBMIT and refresh the page CVE-2018-14541-Vikas Chaudhary 7- You will having popup of /VIKAS/ , /CHAUDHARY/ , / MYAIM/ , /GKAIM/ , /HRPF/ , /ETHICAL/ , /HACKER/ in you account..
Summary
Article Name=>
CVE-2018-14541
Description=>
B2B Script 2.0.0 has Reflected and Stored XSS Vulnerability.. Founded and reported by Vikas Chaudhary
Author=>
Publisher Name=>
www.gkaim.com

11 thoughts on “CVE-2018-14541 : PHP Scripts Mall Basic B2B Script 2.0.0 has Reflected and Stored XSS Vulnerability

  1. Appreciate you sharing, great article post.Much thanks again. Will read on…

  2. Major thankies for the blog.Really thank you!

  3. LashRejuv says:

    Loving the information on this site, you have done outstanding
    job on the content. http://rileyryq3109.wikidot.com/blog:5

  4. LashRejuv says:

    Loving the information on this site, you have done outstanding job on the content. http://rileyryq3109.wikidot.com/blog:5

Leave a Reply

You may also like

Help The HelpLess
%d bloggers like this: