| 제목 | EZ-Suite EZ-Partner 5 Injection |
|---|
| 설명 | HTML injection can result in the modification of web page content or the execution of malicious scripts, leading to the theft of sensitive information, malware distribution, phishing attacks, defacement of websites, or denial of service. It can have a significant impact on the reputation and security of a website and the organization that runs it.
#Steps to Reproduce
1). Go to EZ-Partner application
2). Click on "Forgot Password"
3). Enter generic "html payload"
4). Check the response |
|---|
| 사용자 | The_Druk (UID 70236) |
|---|
| 제출 | 2024. 06. 10. PM 10:04 (2 연령 ago) |
|---|
| 모더레이션 | 2024. 06. 20. AM 07:17 (9 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 269154 [EZ-Suite EZ-Partner 5 Forgot Password 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 17 |
|---|