| Titel | EZ-Suite EZ-Partner 5 Injection |
|---|
| Beschreibung | HTML injection can result in the modification of web page content or the execution of malicious scripts, leading to the theft of sensitive information, malware distribution, phishing attacks, defacement of websites, or denial of service. It can have a significant impact on the reputation and security of a website and the organization that runs it.
#Steps to Reproduce
1). Go to EZ-Partner application
2). Click on "Forgot Password"
3). Enter generic "html payload"
4). Check the response |
|---|
| Benutzer | The_Druk (UID 70236) |
|---|
| Einreichung | 10.06.2024 22:04 (vor 2 Jahren) |
|---|
| Moderieren | 20.06.2024 07:17 (9 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 269154 [EZ-Suite EZ-Partner 5 Forgot Password Cross Site Scripting] |
|---|
| Punkte | 17 |
|---|