XSS Vulnerability v2.0.1
zxc7528064 opened this issue · comments
Affected software : livestreet CMS
Version : v.2.0.1
Type of vulnerability : XSS (Cross-Site Scripting)
Author : Noth
Description:
livestreet CMS is susceptible to cross-site scripting attacks, allowing malicious users to inject code into web pages, and other users will be affected when viewing web pages
Step 2 : go to “/LiveStreet_2.0.1/admin/settings/config/main/” page
Step 3 : insert "XSS" test grammar in "Название сайта" and save it.
this is inside the admin panel, it is not dangerous, it is stupid that you reported it at all