File tree Expand file tree Collapse file tree 1 file changed +8
-5
lines changed Expand file tree Collapse file tree 1 file changed +8
-5
lines changed Original file line number Diff line number Diff line change 11#-------------------------------------------------------
2- # Exploit Title: Ovidentia CMS - Blind SQL Injection (Authenticated)
2+ # Exploit Title: Ovidentia CMS - XSS Ovidentia 8.4.3
3+ # The vulnerability permits any kind of XSS attacks. Reflected, DOM and Stored XSS.
34# Date: 06/05/2019
5+ # [ CVE-2019-13977 ]
46# Exploit Author:
5- # Fernando Pinheiro (n3k00n3)
6- # Victor Flores (UserX)
7+ # Fernando Pinheiro (n3k00n3)
8+ # Victor Flores (UserX)
79# Vendor Homepage: https://www.ovidentia.org/
810# Version: 8.4.3
911# Tested on: Mac,linux - Firefox, safari
1012# Download http://en.ovidentia.org/index.php?tg=fileman&sAction=getFile&id=17&gr=Y&path=Downloads%2FDistributions&file=ovidentia-8-4-3.zip&idf=893
11- # [ Kitsun3Sec Research Group ]
13+ #
14+ # [ Kitsun3Sec Research Group ]
1215#--------------------------------------------------------
1316
14- POC
17+ POC
1518
1619>========================================================
1720 Stored XSS
You can’t perform that action at this time.
0 commit comments